Válasz: Re: Válasz: RE: [Openswan Users] sadb_add error message with kernel 2.4.32 & 2.6.15 / openswan 2.4.5rcX

gabor.horvath at konicaminolta.hu gabor.horvath at konicaminolta.hu
Wed Mar 22 16:45:59 CET 2006 

Since I have set "compress=no" openswan has been working (2 days and 7 
hours).
But I still have the below error messages quite often. I mean every 2 or 3 
hours a day.

Mar 22 16:26:01 gw-bud pluto[7130]: |   02 03 00 0a  0b 00 00 00  f4 0a 01 
00  da 1b 00 00
Mar 22 16:26:01 gw-bud pluto[7130]: |   03 00 01 00  00 00 80 a7  00 01 00 
02  00 00 00 00
Mar 22 16:26:01 gw-bud pluto[7130]: |   ff ff ff ff  00 00 00 00  03 00 05 
00  00 00 00 00
Mar 22 16:26:01 gw-bud pluto[7130]: |   02 00 00 00  3e 4d e4 e9  00 00 00 
00  00 00 00 00
Mar 22 16:26:01 gw-bud pluto[7130]: |   03 00 06 00  00 00 00 00  02 00 00 
00  3e 4d c2 e3
Mar 22 16:26:01 gw-bud pluto[7130]: |   00 00 00 00  00 00 00 00
Mar 22 16:26:01 gw-bud pluto[7130]: | add_sa ipcomp failed

And to tell you the truth I cannot tell you if the compress setting or one 
of the following ones made it possible to run for more than 2 days: 
(Unfortunately I made all of them at the same time) 
kernel.shmmax = 2147483648
kernel.shmmni = 4096
kernel.shmall = 2097152
kernel.sem = 512        64000   128     512

Üdvözlettel / Kind regards,

Horváth Gábor
hálózati és rendszeradminisztrátor / IT specialist

Konica Minolta Magyarország / Hungary
Tel:+36-1-4649-013

mailto:gabor.horvath at konicaminolta.hu
http://www.konicaminolta.hu

Érdeklődik a legújabb Konica Minolta hírek iránt? Iratkozzon fel a 
rendszeres hírlevelünkre! http://www.konicaminolta.hu/hirlevel




Paul Wouters <paul at xelerance.com>
2006.03.20 14:54
 
       Címzett:         gabor.horvath at konicaminolta.hu
         Másolat:       users at openswan.org, Sherman Chan 
<Sherman.Chan at world.net>
             Tárgy:     Re: Válasz: RE: [Openswan Users] sadb_add error 
message with kernel 2.4.32 & 2.6.15 / openswan 2.4.5rcX


On Mon, 20 Mar 2006, gabor.horvath at konicaminolta.hu wrote:

> I forgot to mention: with 768 MB memory it runs without any problems for 
3
> days and with 256 MB mem it does it for 1 day only before it goes crazy. 
I
> checked it twice.

How many connections does that server have? That's a lot of memory to 
lose.

There are a few fixes for memory leaks that I just commited to CVS. They
should be in 2.4.5 when we release it later today.

Though these memory leak fixes are for userland, not kernel space. Can you
try adding compress=no to your conn definitions and see if the problem
becomes less?

Paul

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20060322/bc048524/attachment.htm

More information about the Users mailing list