[Openswan Users] PROTO_IPSEC_ESP SA(0xa81d907f) not found
fabio at newbay.com
Mon Jun 12 22:14:49 CEST 2006
I have the tunnel established but no traffic passing through (can't ping
or connect to remote hosts).
I noticed that I have an error in the secure log:
Jun 12 20:52:33 stratus pluto: "ericsson" #1: ignoring Delete SA
payload: PROTO_IPSEC_ESP SA(0xa81d907f) not found (maybe expired)
Jun 12 20:52:33 stratus pluto: | del: a8 1d 90 7f
Jun 12 20:52:33 stratus pluto: "ericsson" #1: received and
ignored informational message
Jun 12 20:52:33 stratus pluto: | complete state transition with
This is just after the connection is established.
Is this that is preventing the traffic to come through the tunnel? (no
traffic being deciphered with ESP).
If I put forceencaps=yes in the configuration this error does not appear
anymore but I still get no traffic passing through the tunnel.
Putting tcpdump on ppp0 reveals ESP packets going only from one directly
(my peer to the other). This mean that I don't receive any response.
I'm going crazy since 3 days and all of this is going to be very
The remote device is a Netscreen 5xt.
More information about the Users