[Openswan Users] openswan+netkey <-> racoon on linux

Peter Rosenthal voiperster at gmail.com
Thu Jul 17 13:29:02 EDT 2008


I disabled AH on racoon and now it connects fine!

2008/7/17 Peter Rosenthal <voiperster at gmail.com>:

> After looking at the racoon code, racoon is rejecting the proposal because
> it does not have the same number of proto entries. OpenSwan's proposal
> contains just ESP while racoon's proposal has ESP and AH.
>
> What is correct spec behaviour here? Do I need to configure openswan to use
> AH?
>
> 2008/7/17 Paul Wouters <paul at xelerance.com>:
>
> On Thu, 17 Jul 2008, Peter Rosenthal wrote:
>>
>>  This looks like it might be useful? From racoon 0.7:
>>>
>>
>> It looked to me there was overlap in both proposals. So not sure
>> why it got rejected. Try having racoon initiate and openswan
>> respond, that way we can see exactly what it is racoon wants.
>>
>> Paul
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080717/37a88106/attachment.html 


More information about the Users mailing list