[Openswan Users] zywall 30w to FreeS/WAN on SLES 9.0 2.6 kernal question

LeRoy Grubbs lhgrubbs at earthlink.net
Fri May 20 16:11:06 CEST 2005 

Please help.  Getting past phase 1 SA, but failing on phase 2.   Here is a link to the current config and barf file.  

http://www.advbuscomputing.com/zywall_config.html

What is it in the kernel that is required to fix this?

ERROR: netlink response for Add SA esp.8fbee2f6 at 65.41.196.190 included errno 3: No such process


LeRoy

pluto[14481]: "ui" #1: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
May 21 11:45:17 UIWMO pluto[14481]: "ui" #1: ignoring Vendor ID payload [b858d1addd08c1e8...]
May 21 11:45:18 UIWMO pluto[14481]: "ui" #1: NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-00/01: no NAT detected
May 21 11:45:18 UIWMO pluto[14481]: "ui" #1: Peer ID is ID_IPV4_ADDR: '68.187.11.100'
May 21 11:45:18 UIWMO pluto[14481]: "ui" #1: ISAKMP SA established
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: initiating Quick Mode PSK+ENCRYPT+TUNNEL+UP {using isakmp#1}
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: ignoring informational payload, type IPSEC_RESPONDER_LIFETIME
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: route-client output: RTNETLINK answers: Network is unreachable
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: route-client output: /usr/lib/ipsec/_updown: `ip route add 192.168.1.0/24 via 10.10.0.2 dev eth0' failed
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: route-client command exited with status 2
May 21 11:45:19 UIWMO pluto[14481]: packet from 68.187.11.100:500: Main Mode message is part of an unknown exchange
May 21 11:45:21 UIWMO pluto[14481]: packet from 63.252.100.58:500: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
May 21 11:45:21 UIWMO pluto[14481]: packet from 63.252.100.58:500: ignoring Vendor ID payload [625027749d5ab97f...]
May 21 11:45:21 UIWMO pluto[14481]: packet from 63.252.100.58:500: initial Main Mode message received on 65.41.196.190:500 but no connection has been authorized
May 21 11:45:22 UIWMO pluto[14481]: "ui" #2: ignoring informational payload, type IPSEC_RESPONDER_LIFETIME
May 21 11:45:22 UIWMO pluto[14481]: "ui" #2: ERROR: netlink response for Add SA esp.8fbee2f6 at 65.41.196.190 included errno 3: No such process

More information about the Users mailing list