[Openswan Users]
Paul Wouters
paul at xelerance.com
Tue Aug 8 23:30:21 EDT 2006
On Tue, 8 Aug 2006, Brian Sheets wrote:
> Mail client did that. Other than the kernel change, the config files
> didn't change.
You still have mtu issues I think. Try lowering the MTU on the machine
you did NOT upgrade. Or try switching /proc/sys/net/ipv4/ip_no_pmtu_disc
MTU's are handled differently between KLIPS and NETKEY. Did you just
upgrade from 2.6.8 NETKEY to 2.6.16 NETKEY, or did you go from KLIPS
to NETKEY.?
> I'm getting these errors in the daemon.log
>
> Aug 9 00:06:38 gateway1 ipsec__plutorun: 104 "netscreen-office" #1:
> STATE_MAIN_I1: initiate
> Aug 9 00:06:38 gateway1 ipsec__plutorun: ...could not start conn
> "netscreen-office"
>
> But I can't find a reason why.
Run ipsec auto --add netscreen-office and it will tell you the error.
Paul
More information about the Users
mailing list