From owner-freebsd-net@FreeBSD.ORG  Sat Jun  5 08:00:12 2004
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2D0FA16A4CE
	for <freebsd-net@freebsd.org>; Sat,  5 Jun 2004 08:00:12 -0700 (PDT)
Received: from transport.cksoft.de (transport.cksoft.de [62.111.66.27])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 42DDA43D39
	for <freebsd-net@freebsd.org>; Sat,  5 Jun 2004 08:00:11 -0700 (PDT)
	(envelope-from bzeeb-lists@lists.zabbadoz.net)
Received: from transport.cksoft.de (localhost [127.0.0.1])
	by transport.cksoft.de (Postfix) with ESMTP
	id E9CB01FFDC1; Sat,  5 Jun 2004 17:00:08 +0200 (CEST)
Received: by transport.cksoft.de (Postfix, from userid 66)
	id F12D31FF931; Sat,  5 Jun 2004 17:00:06 +0200 (CEST)
Received: by mail.int.zabbadoz.net (Postfix, from userid 1060)
	id B4A4C154E5; Sat,  5 Jun 2004 14:54:25 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by mail.int.zabbadoz.net (Postfix) with ESMTP
	id AAB1415329; Sat,  5 Jun 2004 14:54:26 +0000 (UTC)
Date: Sat, 5 Jun 2004 14:54:26 +0000 (UTC)
From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
X-X-Sender: bz@e0-0.zab2.int.zabbadoz.net
To: Jonathan Feally <vulture@netvulture.com>
In-Reply-To: <40C1CAA1.5080000@netvulture.com>
Message-ID: <Pine.BSF.4.53.0406051454090.26723@e0-0.zab2.int.zabbadoz.net>
References: <1086420241.652.41.camel@localhost>
	<40C1CAA1.5080000@netvulture.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Virus-Scanned: by AMaViS cksoft-s20020300-20031204bz on transport.cksoft.de
cc: freebsd-net@freebsd.org
cc: Victor Gregorio <victor@opsource.net>
Subject: Re: IPSEC_ESP and  if_tun failed
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 05 Jun 2004 15:00:12 -0000

On Sat, 5 Jun 2004, Jonathan Feally wrote:

> Your problem lies in that vpnc is opening a raw socket to get it's ESP
> packets. However when you enable esp in the kernel, the kernel already
> is taking those packets, so you get the SOCK_RAW error as vpnc cannot
> get ESP packets because the kernel is handling them.
> I do not know if options   FAST_IPSEC will solve your problem.

won't

-- 
Bjoern A. Zeeb				bzeeb at Zabbadoz dot NeT