Darrell, just rooled this out onto my two test machines. Both are reporting in the secure log similar entries:
[root@sme1 log]# tail -f secure Oct 26 10:21:55 sme1 Pluto[25009]: loading secrets from "/etc/ipsec.secrets" Oct 26 10:21:55 sme1 Pluto[25009]: "net.local-net.192.168.1.0": prepare-client output: /usr/lib/ipsec/_updown: parameters unexpected Oct 26 10:21:55 sme1 Pluto[25009]: "net.local-net.192.168.1.0": prepare-client command exited with status 2 Oct 26 10:21:55 sme1 Pluto[25009]: "net.local-net.192.168.1.0": route-client output: /usr/lib/ipsec/_updown: parameters unexpected Oct 26 10:21:55 sme1 Pluto[25009]: "net.local-net.192.168.1.0": route-client command exited with status 2 Oct 26 10:21:56 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #1: initiating Main Mode Oct 26 10:21:57 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #1: STATE_MAIN_I4: ISAKMP SA established Oct 26 10:21:57 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #2: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS Oct 26 10:21:57 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #2: up-client output: /usr/lib/ipsec/_updown: parameters unexpected Oct 26 10:21:57 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #2: up-client command exited with status 2 Oct 26 10:22:04 sme1 Pluto[25009]: packet from 203.132.2.2:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA Oct 26 10:22:04 sme1 Pluto[25009]: packet from 203.132.2.2:500: Quick Mode message is for a non-existent (expired?) ISAKMP SA Oct 26 10:22:07 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #2: up-client output: /usr/lib/ipsec/_updown: parameters unexpected Oct 26 10:22:07 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #2: up-client command exited with status 2 Oct 26 10:22:21 sme1 Pluto[25009]: "gate.local-net.192.168.1.0" #3: responding to Quick Mode Oct 26 10:22:21 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #4: responding to Quick Mode Oct 26 10:22:27 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #2: up-client output: /usr/lib/ipsec/_updown: parameters unexpected Oct 26 10:22:27 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #2: up-client command exited with status 2 Oct 26 10:22:31 sme1 Pluto[25009]: "net.local-net.192.168.1.0" #4: discarding duplicate packet; already STATE_QUICK_R1 Oct 26 10:22:31 sme1 Pluto[25009]: "gate.local-net.192.168.1.0" #3: discarding duplicate packet; already STATE_QUICK_R1 [root@sme1 log]# This is just feedback -- no solution to the problem ... Hugh ----- Original Message ----- From: "Darrell May" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, October 26, 2001 3:28 PM Subject: [e-smith-devinfo] FreeS/WAN _updown > > I installed the old freeswan-1.8-3.i386.rpm, pulled the files out you > need (actually took the entire directory incase something else is found) > and have them ready for download here: > > http://myEZserver.com/downloads/mitel/ipsec.tar.gz > > Hope this helps the testing efforts along. > > Regards, > > -- > Darrell May > DMC Netsourced.com > http://netsourced.com > http://myEZserver.com > > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security issues > Support for registered customers and partners to [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org > > -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
