Re: ipsec (ipv4 tunnel mode) is broken

To:	Matthew Galgoci <mgalgoci@xxxxxxxxxx>
Subject:	Re: ipsec (ipv4 tunnel mode) is broken
From:	James Morris <jmorris@xxxxxxxxxx>
Date:	Mon, 7 Feb 2005 14:30:35 -0500 (EST)
Cc:	netdev@xxxxxxxxxxx
In-reply-to:	<Pine.LNX.4.58.0502071320400.12462@lacrosse.corp.redhat.com>
Sender:	netdev-bounce@xxxxxxxxxxx

On Mon, 7 Feb 2005, Matthew Galgoci wrote:

> 
> I noticed as recenly as 2.6.11-rc3-bk3 that ipv4 ipsec is broken. I'm 
> currently using
> openswan as my ike daemon. This was working with the same ike daemon and 
> config as 
> (I think) recenrly as 2.6.11-rc2.
> 
> Before I go binary searching for the change that broke it, I was wondering if 
> anyone
> knows offhand what the issue might be from these error messages in my kernel 
> log:
> 
> NET: Registered protocol family 15
> ESP: md5 digestsize 16 != 0
> ESP: md5 digestsize 16 != 0
> ESP: md5 digestsize 16 != 0
> ESP: md5 digestsize 16 != 0
> 
> openswan dies somewhere between phase 1 and phase 2 negotiation with an 
> internal error.

This patch should fix it (now in bk iirc):

http://marc.theaimsgroup.com/?l=linux-netdev&m=110746335402355&w=2


- James
-- 
James Morris
<jmorris@xxxxxxxxxx>

<Prev in Thread]	Current Thread	[Next in Thread>
ipsec (ipv4 tunnel mode) is broken, Matthew Galgoci Re: ipsec (ipv4 tunnel mode) is broken, James Morris <=

Previous by Date:	Fw: [Bugme-new] [Bug 4180] New: masquarade and source ip, Andrew Morton
Next by Date:	Re: Fw: [Bugme-new] [Bug 4180] New: masquarade and source ip, Herbert Xu
Previous by Thread:	ipsec (ipv4 tunnel mode) is broken, Matthew Galgoci
Next by Thread:	Fw: [Bugme-new] [Bug 4180] New: masquarade and source ip, Andrew Morton
Indexes:	[Date] [Thread] [Top] [All Lists]