[Openswan Users] openswan+netkey <-> racoon on linux
Peter Rosenthal
voiperster at gmail.com
Thu Jul 17 14:31:08 EDT 2008
Note to others, the racoon version with RHEL4 still doesn't work with AH
disabled. Once I had updated it to racoon 0.7 it worked.
2008/7/17 Peter Rosenthal <voiperster at gmail.com>:
> I disabled AH on racoon and now it connects fine!
>
> 2008/7/17 Peter Rosenthal <voiperster at gmail.com>:
>
> After looking at the racoon code, racoon is rejecting the proposal because
>> it does not have the same number of proto entries. OpenSwan's proposal
>> contains just ESP while racoon's proposal has ESP and AH.
>>
>> What is correct spec behaviour here? Do I need to configure openswan to
>> use AH?
>>
>> 2008/7/17 Paul Wouters <paul at xelerance.com>:
>>
>> On Thu, 17 Jul 2008, Peter Rosenthal wrote:
>>>
>>> This looks like it might be useful? From racoon 0.7:
>>>>
>>>
>>> It looked to me there was overlap in both proposals. So not sure
>>> why it got rejected. Try having racoon initiate and openswan
>>> respond, that way we can see exactly what it is racoon wants.
>>>
>>> Paul
>>>
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080717/2305ffc2/attachment.html
More information about the Users
mailing list