[Openswan Users] Problem with interface ipsec0
Stephan Mischnick (Prima - Systemtechnik)
smi at prima-buchhaltung.de
Fri Jul 23 08:54:20 EDT 2010
Hi,
we try to use klips with ipsec0 as interface
(linux-2.6.33.6/openswan-2.6.27 klips only with kpatch). Configuration
is okay so far, tunnels are established but it is not possible
to transmit pakets
bohr:/home/smi # /usr/local/sbin/ipsec eroute
0 10.22.0.0/16 -> 10.21.0.0/16 => %trap
0 10.22.0.0/16 -> 10.23.0.0/16 => %trap
...
a ping to e.g. 10.21.1.1 results in
PING 10.21.1.1 (10.21.1.1) 56(84) bytes of data.
ping: sendmsg: Invalid argument
ping: sendmsg: Invalid argument
^C
--- 10.21.1.1 ping statistics ---
2 packets transmitted, 0 received, 100% packet loss, time 999ms
it seems that sendmsg results in an error EAGAIN, what might be the reason?
--- ipsec.conf extract ---
version 2
config setup
interfaces=ipsec0=dsl0
protostack=klips
myid=@bohr.prima.de
klipsdebug=none
plutodebug=none
uniqueids=yes
conn %default
type=tunnel
compress=yes
authby=rsasig
ike=3des-md5
disablearrivalcheck=yes
leftrsasigkey=%none
rightrsasigkey=%none
keyingtries=0
the same configuration seems to be good for older versions of openswan
thank you for any help
Stephan
More information about the Users
mailing list