[Openswan Users] Problem Starting OpenSWAN ipsec_setup: WARNING: cannot find setke y command -- `%defaultroute'

Jan Madsen Jan at im-teknik.dk
Wed Sep 29 14:59:14 CEST 2004




I'm pretty nuw to this OpenSWAN, but ican't get my ipsec to start proberly
I'm running Fedore Core 2 with standard kernel.
OpenSWAN-2.2.0
When I start /etc/rc.d/init.d/ipsec start I get the following errors

ipsec_setup: ipsec_setup: WARNING: cannot find setkey command --
`%defaultroute'
ipsec_setup: auto=manual search: (/etc/ipsec.conf, line 40) "conn %default"
sections must precede non-default ones
ipsec_setup: unable to determine what conns to manual --up; none done


My ipsec.conf look like this

config setup
        interfaces= %defaultroute
        nat_traversal=yes
        virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16

conn %default
        keyingtries=1
        compress=yes
        disablearrivalcheck=no
        authby=rsasig
        leftrsasigkey=%cert
        rightrsasigkey=%cert

conn roadwarrior-net
        leftsubnet=192.168.0.0/24
        also=roadwarrior

conn roadwarrior-l2tp
        pfs=no
        leftprotoport=17/0
        rightprotoport=17/1701
        also=roadwarrior

conn roadwarrior-l2tp-updatedwin
        pfs=no
        leftprotoport=17/1701
        rightprotoport=17/1701
        also=roadwarrior

conn roadwarrior-all
        leftsubnet=0.0.0.0/0
        also=roadwarrior

conn roadwarrior
        left=%defaultroute
        leftcert=jan.im-teknik.dk.pem
        right=%any
        rightsubnet=vhost:%no,%priv
        auto=add
        pfs=yes

Do anyone know what I'm doing wrong 
Best regards
Jan Madsen
Im_Teknik & Data
+45 9776 1193     Office Phone
+45 2368 8533     Work Cell Phone


More information about the Users mailing list