Package: racoon Version: 0.3.3-5 Severity: important *** Please type your report below this line ***
According to: <quote http://www.ussg.iu.edu/hypermail/linux/kernel/0412.3/0258.html> Since Linux 2.6.10-rcX. packets from a tunnel-mode SA are dropped if no policy exists. You most likely only have an input policy, but no forward policy. If you use setkey to configure your policies, duplicate the input policy and replace "-P in" with "-P fwd". If you let racoon generate the policy you need to upgrade to the latest version. pluto should already get it right. </quote> although Debian's setkey happily accepts -P fwd, racoon generating policies for road warriors seems to not be aware of necessary changes. Please update before sarge release (if possible :) -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.10-ac9-amd Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages racoon depends on: ii debconf 1.4.42 Debian configuration management sy ii ipsec-tools 0.3.3-5 IPsec tools for Linux ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an -- debconf information excluded -- Jacek Kawa -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
