Updated ipsec-on-freebsd (markdown)

2024-12-09 22:13:08 +01:00 · 2013-02-28 18:18:23 +01:00 · 2013-02-28 18:18:23 +01:00 · 3bcf0e072a
commit 3bcf0e072a
parent adfc30bbf6
1 changed files with 6 additions and 2 deletions
--- a/ipsec-on-freebsd.md
+++ b/ipsec-on-freebsd.md
@ -3,7 +3,7 @@
 These instructions are for IPsec in transport mode not IPsec in tunnel mode. IPsec in tunnel mode requires a too tight coupling with the routing table for dynamic routing because the policies can only be specified based on source/destination address and protocol not based on interfaces.

 ## Requirements
-* Root access to both endpoints
+* Root access to both endpoints.
 * Static IPv4 addresses for both endpoints unless you want to write a small shell script as hook for raccon.
 * At least one static IPv4 on at least one endpoint unless you hate yourself.

@ -16,4 +16,8 @@ If you're new to FreeBSD check Chapters [15.9.1](http://www.freebsd.org/doc/hand
 ```
 Reboot into your new kernel.

-## Userland configuration
+## Userland configuration
+
+Install the racoon daemon. It's included in the [security/ipsec-tools](http://www.freshports.org/security/ipsec-tools/) port.
+Racoon is pain in the ass to configure the first time because it's error messages aren't helping and the complexity of IPsec. Don't let this stop you.
+ x