[Openswan Users] netlink XFRM_MSG_NEWPOLICY response for flow

Marco Berizzi pupilla at hotmail.com
Tue Nov 7 11:14:31 EST 2006


Paul Wouters wrote:

> On Tue, 7 Nov 2006, Marco Berizzi wrote:
>
> > >
> > > > This morning  (03:43:45) I have rebooted (for kernel
> > > > update) one of my company ipsec gateway (ip_genova).
> > > > Before shutting down the system, I have issued 'ipsec
> > > > setup stop'. On mimosa (another ipsec gateway) I have
> > > > seen this error again. Here is /var/log/secure:
> > >
> > > I am not sure what you are reporting here. The netlink warning?
> >
> > yes, I'm reporting the netlink warning.
>
> Can you do another ipsec setup restart after your tunnel is up to
> see if it happens again? If so, it looks like your kernel does not
> get cleared upon stopping. So if it happens, can you do ipsec
> setup stop and then an ip xfrm state list and ip xfrm policy list
> to confirm that?

Yes I can do an ipsec setup restart, but the system that
is reporting the error is not the rebooted gateway. Did
I explain myself?




More information about the Users mailing list