[Openswan Users] Debug level for xfrm policy changes

Giovanni Carbone G.Carbone at reitek.com
Thu Jun 20 17:07:19 UTC 2013


I see, is there by any chance a configuration workaround for it so that those block policies are not created at all?

Best regards,

Giovanni.


From: Leto [mailto:letoams at gmail.com]
Sent: Thursday, June 20, 2013 6:49 PM
To: Giovanni Carbone
Cc: users at openswan.org
Subject: Re: [Openswan Users] Debug level for xfrm policy changes

the fix proposed in that bug entry caused other issues. I'm still working on a proper fix.

sent from a tiny device

On 2013-06-20, at 11:23, Giovanni Carbone <G.Carbone at reitek.com<mailto:G.Carbone at reitek.com>> wrote:
Thanks but all I’ve got is just a lot of lines like the following one:

Unknown message: 00000096 0x0000001e 0x00000000

Am I doing something wrong?

Besides that I think I’ve got the same issue described here (although I’m not able to replicate it at will): https://www.openswan.org/issues/1334
I’m using openswan 2.6.38 on a centos 5.9 x86_64.

Best regards,

Giovanni.

From: Leto [mailto:letoams at gmail.com]
Sent: Thursday, June 20, 2013 4:06 PM
To: Giovanni Carbone
Cc: users at openswan.org<mailto:users at openswan.org>
Subject: Re: [Openswan Users] Debug level for xfrm policy changes

ip xfrm monitor

sent from a tiny device

On 2013-06-20, at 7:38, Giovanni Carbone <G.Carbone at reitek.com<mailto:G.Carbone at reitek.com>> wrote:
Hello all,

Is there a way to trace the xfrm policy changes made by pluto?
I’m trying to use the --debug-pfkey switch (or plutodebug=”pfkey” in the ipsec.conf) but I don’t seem to get anything out of it.

Best regards,

Giovanni.



Any use, distribution, copying or disclosure by any other person than the intended recipient of this electronic mail transmission is prohibited as a criminal offence.
Pursuant to Legislative Decree n. 196/2003, you are hereby informed that this message and its attachments contain confidential information intended only for the use of the addressee.
If you receive this transmission in error, please inform the sender immediately and delete the material. Thank You.

The information contained in the e-mail can’t be considered authorized by Reitek SpA in front of the addressee or third parties. Reitek SpA has no responsibility in case of dissemination, duplication or damage of this communication.
_______________________________________________
Users at lists.openswan.org<mailto:Users at lists.openswan.org>
https://lists.openswan.org/mailman/listinfo/users
Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
Building and Integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155



Informativa Privacy - Ai sensi del D. Lgs n. 196/2003 (Codice Privacy) precisiamo che le informazioni contenute in questo messaggio sono riservate e a uso esclusivo del destinatario. Ogni uso, copia o distribuzione non autorizzata è proibita e passibile di sanzioni ai termini di legge. Reitek non è responsabile di eventuali copie o distribuzioni non autorizzate. Se questo messaggio è stato ricevuto per errore, preghiamo gentilmente di eliminarlo e di informare il mittente. Grazie.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20130620/704e6616/attachment-0001.html>


More information about the Users mailing list