Hello to all,<div><br></div><div>I am trying to install and operate openswan to an embedded system. Its a PBX to be exact. Openswan has been compiled and installed successfully as it seems, but when I am trying to make a tunnel I have an error which I cannot comprehend.</div>
<div><br></div><div>below is the error output</div><div><br></div><div><div>HOOME:/etc # ipsec auto --verbose --up sample</div><div>002 "sample" #1: initiating Main Mode</div><div>104 "sample" #1: STATE_MAIN_I1: initiate</div>
<div>003 "sample" #1: received Vendor ID payload [Openswan (this version) 2.6.31 ]</div><div>003 "sample" #1: received Vendor ID payload [Dead Peer Detection]</div><div>002 "sample" #1: transition from state STATE_MAIN_I1 to state STATE_MAIN_I2</div>
<div>106 "sample" #1: STATE_MAIN_I2: sent MI2, expecting MR2</div><div>002 "sample" #1: transition from state STATE_MAIN_I2 to state STATE_MAIN_I3</div><div>108 "sample" #1: STATE_MAIN_I3: sent MI3, expecting MR3</div>
<div>003 "sample" #1: received Vendor ID payload [CAN-IKEv2]</div><div>002 "sample" #1: Main mode peer ID is ID_IPV4_ADDR: '192.168.173.111'</div><div>002 "sample" #1: transition from state STATE_MAIN_I3 to state STATE_MAIN_I4</div>
<div>004 "sample" #1: STATE_MAIN_I4: ISAKMP SA established {auth=OAKLEY_RSA_SIG cipher=aes_128 prf=oakley_sha group=modp2048}</div><div>002 "sample" #2: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS+UP+IKEv2ALLOW {using isakmp#1 msgid:af67a9c2 proposal=defaults pfsgroup=OAKLEY_GROUP_MODP2048}</div>
<div>117 "sample" #2: STATE_QUICK_I1: initiate</div><div>002 "sample" #2: route-host output: select() error: Bad file descriptor</div><div>003 "sample" #2: route-host command exited with status 255</div>
<div>032 "sample" #2: STATE_QUICK_I1: internal error</div><div>003 "sample" #2: ERROR: netlink response for Add SA <a href="mailto:esp.76250eed@192.168.173.20">esp.76250eed@192.168.173.20</a> included errno 3: No such process</div>
<div>032 "sample" #2: STATE_QUICK_I1: internal error</div><div>003 "sample" #2: ERROR: netlink response for Add SA <a href="mailto:esp.76250eed@192.168.173.20">esp.76250eed@192.168.173.20</a> included errno 3: No such process</div>
<div>032 "sample" #2: STATE_QUICK_I1: internal error</div><div>003 "sample" #2: ERROR: netlink response for Add SA <a href="mailto:esp.76250eed@192.168.173.20">esp.76250eed@192.168.173.20</a> included errno 3: No such process</div>
<div>032 "sample" #2: STATE_QUICK_I1: internal error</div><div>003 "sample" #2: ERROR: netlink response for Add SA <a href="mailto:esp.76250eed@192.168.173.20">esp.76250eed@192.168.173.20</a> included errno 3: No such process</div>
<div>032 "sample" #2: STATE_QUICK_I1: internal error</div></div><div><br></div><div><br></div><div>Its seems that the quick mode handshake fails. From the debug output I figured out that the last command "route-host" from the updown scripts fails. But I don't know what these commands are doing to the system.</div>
<div>Does anyone have any idea what it might goes wrong here??</div><div><br></div><div>Thanks a lot in advance!</div><div><br></div><div><br clear="all"><br>-- <br>Think simple!<br>
</div>