[Openswan Users] ipsec_setup: Cannot talk to rtnetlink: Invalid argument and routes problem

Tue Jun 21 18:57:32 CEST 2005

On Tue, 21 Jun 2005, Brett Curtis wrote:

> /lib/modules/2.6.11-hardened-r14/kernel/net/ipv4/xfrm4_tunnel.ko
> ipsec_setup: Cannot talk to rtnetlink: Invalid argument
> ipsec_setup: Cannot talk to rtnetlink: Invalid argument                   [ ok ]

There might be a problem with this kernel.

> Jun 21 09:17:27 defender pluto[29876]: "roadwarrior-l2tp"[2]
> 24.31.133.252 #2: route-host output: /usr/lib/ipsec/_updown: doroute
> `ip route add 24.31.133.252/32 via 192.168.1.1 dev eth0 ' failed
> (RTNETLINK answers: Network is unreachable)

> conn roadwarrior
>       pfs=no
>       left=24.XX.XX.XX  #external Ip
>       leftnexthop=192.168.1.1 #internal ip / gateway

nexthop refers to the upstream IP address. eg the IP address of your
default gateweay. Not some internal IP of the remote ipsec host.

Paul