<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman,new york,times,serif;font-size:10pt"><div>Hi List,<br><br>I'm desperately trying to wrestle this for two days now without success, I really thank Paul for his insight on this, but for the life of me I can't really figure out <br>what I have done wrong,<br><br>I already do what Paul says, i compiled a self build kernel with Openswan U2.6.ikev2-201003.git-g091ae037-dirty + 2.6.23 kernel + natt + saref patch but I'm still getting this error<br><br><font style="font-weight: bold;" size="3">19 03:15:14 sti-fw2 ipsec__plutorun: 003 ERROR: PF_KEY K_SADB_X_PLUMBIF response for configure_mast_device included errno 2: No such file or directory.<br></font><br>could anyone shed some light on this???? I build openswan with the following information<br><br><br style="font-weight: bold;"><span style="font-weight:
bold;">USE_MAST?=true</span><br style="font-weight: bold;"><br style="font-weight: bold;"><span style="font-weight: bold;"># MAST is generally a prerequisite for SAREF support in applications</span><br style="font-weight: bold;"><span style="font-weight: bold;">USE_SAREF_KERNEL=true</span><br style="font-weight: bold;"><br><br><br><font size="4"><span style="font-weight: bold;">then rpmbuild -bb openswan-2/packaging/centos5/openswan.spec --define 'buildklips 0'</span></font><br><br><br>Jan 19 03:15:13 sti-fw2 kernel: NET: Registered protocol family 15<br>Jan 19 03:15:14 sti-fw2 ipsec__plutorun: 002 added connection description "roadwarrior-net"<br>Jan 19 03:15:14 sti-fw2 ipsec__plutorun: 002 added connection description "roadwarrior-all"<br>Jan 19 03:15:14 sti-fw2 ipsec__plutorun: 002 added connection description "roadwarrior-l2tp"<br>Jan 19 03:15:14 sti-fw2 ipsec__plutorun: 002 added connection description "roadwarrior"<br>Jan<br>19 03:15:14 sti-fw2
ipsec__plutorun: 003 ERROR: PF_KEY K_SADB_X_PLUMBIF<br>response for configure_mast_device included errno 2: No such file or<br>directory<br>Jan 19 03:15:14 sti-fw2 ipsec__plutorun: 003 plumb command exited with status 1<br>Jan 19 03:15:14 sti-fw2 ipsec__plutorun: 003 NAT-Traversal: Trying new style NAT-T<br>Jan 19 03:15:14 sti-fw2 ipsec__plutorun: 003 NAT-Traversal: ESPINUDP(1) setup failed for new style NAT-T family IPv4 (errno=19)<br>Jan 19 03:15:14 sti-fw2 ipsec__plutorun: 003 NAT-Traversal: Trying old style NAT-T<br><br><br><br>Jan 18 17:58:33 sti-fw2 pluto[14946]: | NAT-OA: 32 tunnel: 1<br>Jan<br>18 17:58:33 sti-fw2 pluto[14946]: "roadwarrior-l2tp"[1] 124.106.205.249<br>#2: pfkey_lib_debug:pfkey_sa_parse: SAref=196612 must be (SAref ==<br>IPSEC_SAREF_NULL(0) || SAref <<br>IPSEC_SA_REF_TABLE_NUM_ENTRIES(32768)).<br>Jan 18 17:58:33 sti-fw2<br>pluto[14946]: "roadwarrior-l2tp"[1] 124.106.205.249 #2:<br>pfkey_lib_debug:pfkey_msg_parse:
extension parsing for type<br>1(security-association) failed with error -22.<br>Jan<br>18 17:58:33 sti-fw2 pluto[14946]: "roadwarrior-l2tp"[1] 124.106.205.249<br>#2: pfkey_lib_debug:pfkey_sa_parse: SAref=196612 must be (SAref ==<br>IPSEC_SAREF_NULL(0) || SAref <<br>IPSEC_SA_REF_TABLE_NUM_ENTRIES(32768)).<br>Jan<br>18 17:58:33 sti-fw2 pluto[14946]: "roadwarrior-l2tp"[1] 124.106.205.249<br>#2: pfkey_lib_debug:pfkey_msg_parse: extension parsing for type<br>1(security-association) failed with error -22.<br>Jan 18 17:58:33<br>sti-fw2 pluto[14946]: "roadwarrior-l2tp"[1] 124.106.205.249 #2:<br>transition from state STATE_QUICK_R0 to state STATE_QUICK_R1<br>Jan
18 17:58:33 sti-fw2 pluto[14946]: "roadwarrior-l2tp"[1] 124.106.205.249
#2: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2<br>Jan<br>18 17:58:33 sti-fw2 pluto[14946]: "roadwarrior-l2tp"[1] 124.106.205.249<br>#2: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2<br>Jan<br>18 17:58:33 sti-fw2 pluto[14946]: "roadwarrior-l2tp"[1] 124.106.205.249<br>#2: STATE_QUICK_R2: IPsec SA established transport mode<br>{ESP=>0xbc38cb24 <0x53846cb9 xfrm=AES_128-HMAC_SHA1<br>NATOA=192.168.2.254 NATD=124.106.205.249:36866 DPD=none}<br>Jan
18 17:59:08 sti-fw2 pluto[14946]: "roadwarrior-net"[2] 124.106.205.249
#1: received Delete SA(0xbc38cb24) payload: deleting IPSEC State #2<br>Jan<br>18 17:59:08 sti-fw2 pluto[14946]: "roadwarrior-net"[2] 124.106.205.249<br>#1: deleting connection "roadwarrior-l2tp" instance with peer<br>124.106.205.249 {isakmp=#0/ipsec=#0}<br>Jan 18 17:59:08 sti-fw2 pluto[14946]: "roadwarrior-net"[2] 124.106.205.249 #1: received and ignored informational message<br>Jan<br>18 17:59:08 sti-fw2 pluto[14946]: "roadwarrior-net"[2] 124.106.205.249<br>#1: received Delete SA payload: deleting ISAKMP State #1<br>Jan 18<br>17:59:08 sti-fw2 pluto[14946]: "roadwarrior-net"[2] 124.106.205.249:<br>deleting connection "roadwarrior-net" instance with peer<br>124.106.205.249 {isakmp=#0/ipsec=#0}<br>Jan 18 17:59:08 sti-fw2 pluto[14946]: packet from 124.106.205.249:36866: received and ignored informational message<br><br><br>Thanks for your patience and time :)<br><br>Best regards,<br><br>Ronald<br></div>
<!-- cg11.c1.mail.mud.yahoo.com compressed/chunked Wed Jan 20 04:44:21 PST 2010 -->
</div><br>
</body></html>