Date: Fri, 3 May 2002 22:47:11 -0500 From: "David W. Chapman Jr." <dwcjr@inethouston.net> To: "David Kelly" <dkelly@hiwaay.net> Cc: <freebsd-stable@freebsd.org>, <sumikawa@freebsd.org> Subject: Re: port/racoon broken Message-ID: <000701c1f31e$5f869af0$f800a8c0@dwcjr> References: <200205040258.g442w24I039100@grumpy.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> "David W. Chapman Jr." writes: > > On Fri, May 03, 2002 at 12:26:30PM -0500, David Kelly wrote: > > > > > > May 3 03:09:44 Frisket /kernel: IPv4 ESP input: no key association found for spi 37447490 > > > > I'm having the same problem, I tried to get two sites with ipsec and > > racoon to talk and they just wouldn't. My screen showed the same > > thing > > Am concerned a bit about this because my two ends *are* talking to each > other with the new racoon. The link didn't come up until I started the > 2nd racoon, so I feel like the racoons have done their thing. Or am I > wrong? I know the link is speaking ESP because that and port 500 UDP is > the only path thru my ipfw's. ESP encrypts the packets, so if you were to tcpdump it you would only see layer 3(tcpdump formats it nice). The actual connect that's encrypted doesn't speak over port 500. IT appears as if yours is working though. I and a few other people cannot get as far as you though. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000701c1f31e$5f869af0$f800a8c0>