<div dir="ltr">This looks like it might be useful? From racoon 0.7:<br><br>2008-07-17 06:52:07: DEBUG: begin compare proposals.<br>2008-07-17 06:52:07: DEBUG: pair[0]: 0x594550<br>2008-07-17 06:52:07: DEBUG: 0x594550: next=(nil) tnext=0x594580<br>
2008-07-17 06:52:07: DEBUG: 0x594580: next=(nil) tnext=0x5945b0<br>2008-07-17 06:52:07: DEBUG: 0x5945b0: next=(nil) tnext=0x5945e0<br>2008-07-17 06:52:07: DEBUG: 0x5945e0: next=(nil) tnext=(nil)<br>2008-07-17 06:52:07: DEBUG: prop#=0 prot-id=ESP spi-size=4 #trns=4 trns#=0 trns-id=AES<br>
2008-07-17 06:52:07: DEBUG: type=Group Description, flag=0x8000, lorv=2<br>2008-07-17 06:52:07: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel<br>2008-07-17 06:52:07: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds<br>
2008-07-17 06:52:07: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600<br>2008-07-17 06:52:07: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha<br>2008-07-17 06:52:07: DEBUG: type=Key Length, flag=0x8000, lorv=128<br>
2008-07-17 06:52:07: DEBUG: prop#=0 prot-id=ESP spi-size=4 #trns=4 trns#=1 trns-id=AES<br>2008-07-17 06:52:07: DEBUG: type=Group Description, flag=0x8000, lorv=2<br>2008-07-17 06:52:07: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel<br>
2008-07-17 06:52:07: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds<br>2008-07-17 06:52:07: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600<br>2008-07-17 06:52:07: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-md5<br>
2008-07-17 06:52:07: DEBUG: type=Key Length, flag=0x8000, lorv=128<br>2008-07-17 06:52:07: DEBUG: prop#=0 prot-id=ESP spi-size=4 #trns=4 trns#=2 trns-id=3DES<br>2008-07-17 06:52:07: DEBUG: type=Group Description, flag=0x8000, lorv=2<br>
2008-07-17 06:52:07: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel<br>2008-07-17 06:52:07: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds<br>2008-07-17 06:52:07: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600<br>
2008-07-17 06:52:07: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha<br>2008-07-17 06:52:07: DEBUG: prop#=0 prot-id=ESP spi-size=4 #trns=4 trns#=3 trns-id=3DES<br>2008-07-17 06:52:07: DEBUG: type=Group Description, flag=0x8000, lorv=2<br>
2008-07-17 06:52:07: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel<br>2008-07-17 06:52:07: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds<br>2008-07-17 06:52:07: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600<br>
2008-07-17 06:52:07: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-md5<br>2008-07-17 06:52:07: DEBUG: peer's single bundle:<br>2008-07-17 06:52:07: DEBUG: (proto_id=ESP spisize=4 spi=b89f6742 spi_p=00000000 encmode=Tunnel reqid=0:0)<br>
2008-07-17 06:52:07: DEBUG: (trns_id=AES encklen=128 authtype=hmac-sha)<br>2008-07-17 06:52:07: DEBUG: (trns_id=AES encklen=128 authtype=hmac-md5)<br>2008-07-17 06:52:07: DEBUG: (trns_id=3DES encklen=0 authtype=hmac-sha)<br>
2008-07-17 06:52:07: DEBUG: (trns_id=3DES encklen=0 authtype=hmac-md5)<br>2008-07-17 06:52:07: DEBUG: my single bundle:<br>2008-07-17 06:52:07: DEBUG: (proto_id=AH spisize=4 spi=00000000 spi_p=00000000 encmode=Tunnel reqid=0:0)<br>
2008-07-17 06:52:07: DEBUG: (trns_id=SHA authtype=hmac-sha)<br>2008-07-17 06:52:07: DEBUG: (trns_id=MD5 authtype=hmac-md5)<br>2008-07-17 06:52:07: DEBUG: (proto_id=ESP spisize=4 spi=00000000 spi_p=00000000 encmode=Tunnel reqid=0:0)<br>
2008-07-17 06:52:07: DEBUG: (trns_id=3DES encklen=0 authtype=hmac-sha)<br>2008-07-17 06:52:07: DEBUG: (trns_id=3DES encklen=0 authtype=hmac-md5)<br>2008-07-17 06:52:07: DEBUG: (trns_id=BLOWFISH encklen=448 authtype=hmac-sha)<br>
2008-07-17 06:52:07: DEBUG: (trns_id=BLOWFISH encklen=448 authtype=hmac-md5)<br>2008-07-17 06:52:07: DEBUG: (trns_id=AES encklen=128 authtype=hmac-sha)<br>2008-07-17 06:52:07: DEBUG: (trns_id=AES encklen=128 authtype=hmac-md5)<br>
2008-07-17 06:52:07: ERROR: not matched<br>2008-07-17 06:52:07: ERROR: no suitable policy found.<br>2008-07-17 06:52:07: ERROR: failed to pre-process packet.<br><br><br><div class="gmail_quote">2008/7/16 Peter Rosenthal <<a href="mailto:voiperster@gmail.com">voiperster@gmail.com</a>>:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div dir="ltr">Is there anything I can do to further debug my existing set-up? Looks like racoon2 is seriously different to racoon (configuration format is different, and right now its not compiling but I can probably fix that). I have many boxes configured with racoon that I want to mesh.<br>
<br><br><br><div class="gmail_quote"><div class="Ih2E3d">2008/7/16 Paul Wouters <<a href="mailto:paul@xelerance.com" target="_blank">paul@xelerance.com</a>>:<br></div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div>On Wed, 16 Jul 2008, Peter Rosenthal wrote:<br>
<br>
</div><div><div></div><div class="Wj3C7c"><div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
I take it that this was with racoon2? Stuff I am reading indicates that racoon only supports ikev1.<br>
</blockquote>
<br></div>
thats right.<br><font color="#888888">
<br>
Paul<br>
<br>
</font></div></div></blockquote></div><br></div>
</blockquote></div><br></div>