[Openswan Users] no IPv6 routers present

Andy Gay andy at andynet.net
Sun Oct 1 22:31:53 EDT 2006 

On Sat, 2006-09-30 at 19:47 +0530, conn intel wrote:
> Hello Friends,
> 
> I am using Linux Openswan Ucvs2006Sep26_01:19:01/K2.4.4 (klips) and
> debian 3.1r1 sarge. And while starting the ipsec i am getting
> following message in the syslog file

With Debian, you should also check /var/log/auth.log for Openswan
messages.
> 
> LOG MESSAGE :::
> 
> Oct  1 00:56:55 localhost ipsec_setup: ...Openswan IPsec started
> Oct  1 00:56:55 localhost ipsec_setup: Starting Openswan IPsec
> Ucvs2006Sep26_01:19:01/K2.4.4...
> Oct  1 00:56:56 localhost ipsec__plutorun: 104 "i2i" #1:
> STATE_MAIN_I1: initiate
> Oct  1 00:56:56 localhost ipsec__plutorun: ...could not start conn
> "i2i"
> Oct  1 00:57:04 localhost kernel: ipsec0: no IPv6 routers present
> 
If you have ipv6 loaded, it tries some type of router discovery whenever
any network interface is started. This message indicates it did that and
didn't find any ipv6 routers. Not a probles. That won't break any
Openswan functions. Well, maybe it would be a problem if you were using
ipv6, but your configs have just ipv4 addresses, so I'm guessing not.

> 
> I have also loaded the ipv6 module using modprobe ipv6 and i am
> getting listed it in lsmod also. Now how can i solve the problem.

What problem? What is not working for you?


>  Is there any problem with the ipsec.conf file ? Any kind of help will
> be appreicated ...
> 
> Thank you well in advance..
> 
> Have a Nice time and good day ahead..
> Ankur.
> 
> Here is IPSEC.CONF 
> 
> version 2.0
> 
> config setup
>         interfaces=%defaultroute
>         nat_traversal=yes
>         virtual_private=%v4:MailScanner has detected a possible fraud
> attempt from "10.0.0.0" claiming to beMailScanner warning: numerical
> links are often malicious: 10.0.0.0/8,%v4:172.16.0.0/12,%
> v4:192.168.0.0/16,%v4:!10.0.0.0/255.0.0.0,%v4:!10.0.0.0/255.0.0.0
> 
> conn %default
>         keyingtries=0
> 
> conn i2i
>   left=MailScanner has detected a possible fraud attempt from
> "10.10.136.88" claiming to beMailScanner warning: numerical links are
> often malicious: 10.10.136.88
>   leftnexthop=%defaultroute
>   leftsubnet=MailScanner has detected a possible fraud attempt from
> "222.0.0.0" claiming to beMailScanner warning: numerical links are
> often malicious: 222.0.0.0/255.0.0.0
>   right=MailScanner has detected a possible fraud attempt from
> "10.10.136.90" claiming to beMailScanner warning: numerical links are
> often malicious: 10.10.136.90
>   rightsubnet=MailScanner has detected a possible fraud attempt from
> "222.0.0.0" claiming to beMailScanner warning: numerical links are
> often malicious: 222.0.0.0/255.0.0.0
>   rightnexthop=%defaultroute
>   authby=secret
>   auto=start
> 
You have leftsubnet == rightsubnet. Probably not what you want. But you
don't tell us what you're trying to do.

More information about the Users mailing list