[Openswan Users] Make Install appears to not to work

Fri May 20 16:21:19 CEST 2005

Followed instructions but FreeS/WAN ipsec is not effected.   Still getting same error(s).

May 20 23:12:56 WIKMO ipsec_setup: ...FreeS/WAN IPsec stopped
May 20 23:12:56 WIKMO ipsec_setup: Starting FreeS/WAN IPsec 2.04...
May 20 23:12:57 WIKMO ipsec_setup: KLIPS ipsec0 on eth0 192.168.1.35/255.255.255.0 broadcast 192.168.1.255
May 20 23:12:57 WIKMO ipsec__plutorun: Starting Pluto subsystem...
May 20 23:12:57 WIKMO ipsec_setup: ...FreeS/WAN IPsec started
May 20 23:12:58 WIKMO pluto[7556]: Starting Pluto (FreeS/WAN Version 2.04 X.509-1.5.4 LIBCURL PLUTO_USES_KEYRR)
May 20 23:12:58 WIKMO pluto[7556]:   including NAT-Traversal patch (Version 0.6)
May 20 23:12:58 WIKMO pluto[7556]: Using Linux 2.6 IPsec interface code
May 20 23:12:58 WIKMO pluto[7556]: Changing to directory '/etc/ipsec.d/cacerts'
May 20 23:12:58 WIKMO pluto[7556]:   loaded CA cert file 'cacert_01.pem' (1586 bytes)
May 20 23:12:58 WIKMO pluto[7556]: Changing to directory '/etc/ipsec.d/aacerts'
May 20 23:12:58 WIKMO pluto[7556]: Changing to directory '/etc/ipsec.d/ocspcerts'
May 20 23:12:58 WIKMO pluto[7556]: Changing to directory '/etc/ipsec.d/crls'
May 20 23:12:58 WIKMO pluto[7556]: Changing to directory '/etc/ipsec.d/acerts'
May 20 23:12:59 WIKMO pluto[7556]: added connection description "roadwarrior"
May 20 23:12:59 WIKMO pluto[7556]: listening for IKE messages
May 20 23:12:59 WIKMO pluto[7556]: adding interface eth1/eth1 192.168.23.1
May 20 23:12:59 WIKMO pluto[7556]: adding interface eth1/eth1 192.168.23.1:4500
May 20 23:12:59 WIKMO pluto[7556]: adding interface eth0/eth0 192.168.1.35
May 20 23:12:59 WIKMO pluto[7556]: adding interface eth0/eth0 192.168.1.35:4500
May 20 23:12:59 WIKMO pluto[7556]: adding interface lo/lo 127.0.0.1
May 20 23:12:59 WIKMO pluto[7556]: adding interface lo/lo 127.0.0.1:4500
May 20 23:12:59 WIKMO pluto[7556]: adding interface lo/lo ::1
May 20 23:12:59 WIKMO pluto[7556]: adding interface lo/lo ::1:4500
May 20 23:12:59 WIKMO pluto[7556]: loading secrets from "/etc/ipsec.secrets"
May 20 23:12:59 WIKMO pluto[7556]:   loaded private key file '/etc/ipsec.d/private/key_01.pem' (1675 bytes)
May 20 23:12:59 WIKMO pluto[7556]: "roadwarrior": route-client output: RTNETLINK answers: Network is unreachable
May 20 23:12:59 WIKMO pluto[7556]: "roadwarrior": route-client output: /usr/lib/ipsec/_updown: `ip route add 192.168.1.0/24 via 192.168.23.1 dev eth0' failed
May 20 23:12:59 WIKMO pluto[7556]: "roadwarrior": route-client command exited with status 2
May 20 23:13:00 WIKMO ipsec__plutorun: 003 "roadwarrior": route-client command exited with status 2
May 20 23:13:00 WIKMO ipsec__plutorun: 025 "roadwarrior": could not route
May 20 23:13:00 WIKMO ipsec__plutorun: ...could not route conn "roadwarrior"
May 20 23:13:00 WIKMO pluto[7556]: "roadwarrior" #1: initiating Main Mode
May 20 23:13:00 WIKMO ipsec__plutorun: 104 "roadwarrior" #1: STATE_MAIN_I1: initiate
May 20 23:13:00 WIKMO ipsec__plutorun: ...could not start conn "roadwarrior"
May 20 23:13:00 WIKMO pluto[7556]: "roadwarrior" #1: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
May 20 23:13:00 WIKMO pluto[7556]: "roadwarrior" #1: ignoring Vendor ID payload [b858d1addd08c1e8...]
May 20 23:13:01 WIKMO pluto[7556]: "roadwarrior" #1: NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-00/01: no NAT detected
May 20 23:13:01 WIKMO pluto[7556]: "roadwarrior" #1: Peer ID is ID_IPV4_ADDR: '68.187.11.100'
May 20 23:13:01 WIKMO pluto[7556]: "roadwarrior" #1: ISAKMP SA established
May 20 23:13:01 WIKMO pluto[7556]: "roadwarrior" #2: initiating Quick Mode PSK+ENCRYPT+TUNNEL+UP {using isakmp#1}
May 20 23:13:01 WIKMO pluto[7556]: "roadwarrior" #2: route-client output: RTNETLINK answers: Network is unreachable
May 20 23:13:01 WIKMO pluto[7556]: "roadwarrior" #2: route-client output: /usr/lib/ipsec/_updown: `ip route add 192.168.1.0/24 via 192.168.23.1 dev eth0' failed
May 20 23:13:01 WIKMO pluto[7556]: "roadwarrior" #2: route-client command exited with status 2
May 20 23:13:05 WIKMO pluto[7556]: "roadwarrior" #2: ERROR: netlink response for Add SA esp.6edab38d at 192.168.1.35 included errno 3: No such process

Configuration information:  http://www.advbuscomputing.com/zywall_config.html

LeRoy