Date: Sun, 18 Jan 2004 21:30:23 +0000 (UTC) From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> To: "Branko F. =?iso-8859-2?Q?Gra=E8nar?=" <bfg@noviforum.si> Cc: freebsd-current@freebsd.org Subject: Re: 5.2 IPSec problems & crash Message-ID: <Pine.BSF.4.53.0401182125530.94399@e0-0.zab2.int.zabbadoz.net> In-Reply-To: <1074460582.1353.39.camel@mordor.lucky.si> References: <1074460582.1353.39.camel@mordor.lucky.si>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 18 Jan 2004, Branko F. [iso-8859-2] Gra?nar wrote: > I'm having big troubles with IPSec after upgrading from 5.1 to 5.2. > IPSec tunnels stoped working after upgrade of the base system (i didn't > change racoon or setkey configuration) I'm using the latest racoon. > > # pkg_info | grep racoon > racoon-20040114a KAME racoon IKE daemon I think this racoon is known to have endian bugs and won't work as expected on i386. You should add this patch: http://www.kame.net/dev/cvsweb2.cgi/kame/kame/kame/racoon/isakmp_inf.c.diff?r1=1.83&r2=1.84 or upgrade port to use this: ftp://ftp.kame.net/pub/kame/misc/racoon-20040116a.tar.gz apart from that IPSEC is known to be buggy in 5.2R. do not flush your spd ... search thread 'IPSec fixes' on this mailing list for more information. -- Greetings Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT 56 69 73 69 74 http://www.zabbadoz.net/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.53.0401182125530.94399>