subject:"\[leaf\-user\] IPSec errors, kernel\/userland version mismatch\?"

[leaf-user] IPSec errors, kernel/userland version mismatch?

2007-03-30 Thread James Neave

Hi,

I've been asked to add VPN capabilities to our router here at work.
It's currently Bering-uClibc 2.3.1.

I keep getting this error in the /var/secure log when starting up or
connecting to the VPN:

Connecting:
ERROR: L2TP-PSK[2] 5.6.7.8 #3: pfkey write() of SADB_ADD message 5 for
Add SA [EMAIL PROTECTED] failed. Errno 22: Invalid argument

Starting the service:
ipsec_setup: /usr/lib/ipsec/eroute: pfkey write failed, returning -1
with errno=22.
ipsec_setup: Invalid argument, check kernel log messages for specifics.

All I can find with Google is that this suggests a kernel
module/userland tools version mismatch.

gateway# uname -r
2.4.31
gateway# ipsec --version
Linux Openswan U2.4.5/K1.0.9 (klips)
See `ipsec --copyright' for copyright information.

Erm, I *guess* that's a version mismatch. If it is, where can I grab
ipsec.lrp version 2.4.31?

Or is the version of the kernel not the same as the version of its
modules?

Regards,

James.

The information in this email is confidential and may be legally privileged.  
It is intended solely for the addressee.  Access to this email by anyone else 
is unauthorised.

If you are not the intended recipient, any disclosure, copying, distribution or 
any action taken or omitted to be taken in reliance on it is prohibited and may 
be unlawful.

The contents of an attachment to this email may contain software viruses that 
could damage your own computer systems.  Whilst The Spur Group of Companies has 
taken every precaution to minimise the risk, we cannot accept liability for any 
damage that you sustain as a result of software viruses.


-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT  business topics through brief surveys-and earn cash
http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV

leaf-user mailing list: leaf-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/leaf-user
Support Request -- http://leaf-project.org/

Re: [leaf-user] IPSec errors, kernel/userland version mismatch?

2007-03-30 Thread James Neave

 connecting from any IP address:
193.175.198.98 %any: PSK  MySecretKey 
# (Line above only works on recent versions of Openswan).

# There is a subtle difference with the following
# (see also 'man ipsec.secrets') which affects NATed
# clients that use a PSK:
193.175.198.98 : PSK MySecretKey



 -Original Message-
 From: [EMAIL PROTECTED] [mailto:leaf-user-
 [EMAIL PROTECTED] On Behalf Of James Neave
 Sent: 30 March 2007 12:55
 To: leaf-user@lists.sourceforge.net
 Subject: [leaf-user] IPSec errors, kernel/userland version mismatch?
 
 Hi,
 
 I've been asked to add VPN capabilities to our router here at work.
 It's currently Bering-uClibc 2.3.1.
 
 I keep getting this error in the /var/secure log when starting up or
 connecting to the VPN:
 
 Connecting:
 ERROR: L2TP-PSK[2] 5.6.7.8 #3: pfkey write() of SADB_ADD message 5
for
 Add SA [EMAIL PROTECTED] failed. Errno 22: Invalid argument
 
 Starting the service:
 ipsec_setup: /usr/lib/ipsec/eroute: pfkey write failed, returning -1
 with errno=22.
 ipsec_setup: Invalid argument, check kernel log messages for
specifics.
 
 All I can find with Google is that this suggests a kernel
 module/userland tools version mismatch.
 
 gateway# uname -r
 2.4.31
 gateway# ipsec --version
 Linux Openswan U2.4.5/K1.0.9 (klips)
 See `ipsec --copyright' for copyright information.
 
 Erm, I *guess* that's a version mismatch. If it is, where can I grab
 ipsec.lrp version 2.4.31?
 
 Or is the version of the kernel not the same as the version of its
 modules?
 
 Regards,
 
 James.
 
 The information in this email is confidential and may be legally
 privileged.  It is intended solely for the addressee.  Access to this
 email by anyone else is unauthorised.
 
 If you are not the intended recipient, any disclosure, copying,
 distribution or any action taken or omitted to be taken in reliance on
it
 is prohibited and may be unlawful.
 
 The contents of an attachment to this email may contain software
viruses
 that could damage your own computer systems.  Whilst The Spur Group of
 Companies has taken every precaution to minimise the risk, we cannot
 accept liability for any damage that you sustain as a result of
software
 viruses.
 
 


-
 Take Surveys. Earn Cash. Influence the Future of IT
 Join SourceForge.net's Techsay panel and you'll get the chance to
share
 your
 opinions on IT  business topics through brief surveys-and earn cash

http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDE
V


 leaf-user mailing list: leaf-user@lists.sourceforge.net
 https://lists.sourceforge.net/lists/listinfo/leaf-user
 Support Request -- http://leaf-project.org/

-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT  business topics through brief surveys-and earn cash
http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV

leaf-user mailing list: leaf-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/leaf-user
Support Request -- http://leaf-project.org/

[leaf-user] IPSec errors, kernel/userland version mismatch?

Re: [leaf-user] IPSec errors, kernel/userland version mismatch?

2 matches

Site Navigation

Mail list logo

Footer information