search for: pfkey

...ain.c:174:main(): @(#)internal version 20001216 sakane@kame.net 2004-04-27 20:52:14: INFO: main.c:175:main(): @(#)This product linked OpenSSL 0.9.7c-p1 30 Sep 2003 (http://www.openssl.org/) 2004-04-27 20:52:14: DEBUG: algorithm.c:614:alg_oakley_dhdef(): hmac(modp1024) 2004-04-27 20:52:14: DEBUG: pfkey.c:2379:pk_checkalg(): compression algorithm can not be checked because sadb message doesn't suppo rt it. 2004-04-27 20:52:14: INFO: isakmp.c:1368:isakmp_open(): 10.0.0.1[500] used as isakmp port (fd=5) 2004-04-27 20:52:14: DEBUG: pfkey.c:197:pfkey_handler(): get pfkey X_SPDDUMP message 2004-...

...2:main(): @(#)package version freebsd-20030711a 2004-01-13 13:36:39: INFO: main.c:174:main(): @(#)internal version 20001216 sakane@kame.net 2004-01-13 13:36:39: INFO: main.c:175:main(): @(#)This product linked OpenSSL 0.9.7c 30 Sep 2003 (http://www.openssl.org/) 2004-01-13 13:36:39: DEBUG: pfkey.c:371:pfkey_init(): call pfkey_send_register for AH 2004-01-13 13:36:39: DEBUG: pfkey.c:371:pfkey_init(): call pfkey_send_register for ESP 2004-01-13 13:36:39: DEBUG: pfkey.c:371:pfkey_init(): call pfkey_send_register for IPCOMP 2004-01-13 13:36:39: DEBUG: cftoken.l:549:yycf_set_buffer():...

Hi all, I finally got my IPSec tunnel from my Fedora firewall system (running Shorewall 4.0.6) to a remote Draytek Router up-and-running, but I''m having difficulties directing traffic through the tunnel. From the output of "racoon -F -f racoon.conf" and the connection status page of the Draytek I can tell the tunnel is UP, but ping and traceroute requests to several hosts

...yylex(): <23> 2004-07-26 16:23:15: DEBUG2: cftoken.l:223:yylex(): <23> 2004-07-26 16:23:15: DEBUG2: cftoken.l:332:yylex(): <23> 2004-07-26 16:23:15: DEBUG2: cftoken.l:224:yylex(): <23> 2004-07-26 16:23:15: DEBUG2: cftoken.l:346:yylex(): <23> 2004-07-26 16:23:15: DEBUG: pfkey.c:2379:pk_checkalg(): compression algorithm can not be checked because sadb message doesn't support it. 2004-07-26 16:23:15: DEBUG2: cfparse.y:1429:cfparse(): parse successed. 2004-07-26 16:23:15: INFO: isakmp.c:1368:isakmp_open(): 1.1.1.1[500] used as isakmp port (fd=5) 2004-07-26 16:23:15: DE...

Hi, I am new to ipsec and trying to connect my bsd server with win 2000. I have succeeded to tunnel using pre-shared key. But regarding certificate , I failed to get success. The following are configuration : racoon.conf path certificate "/usr/local/openssl/certs" ; # "log" specifies logging level. It is followed by either "notify",

Is there a "cookbook" for setting this up? There are examples for setting up a tunnel between two fixed-address networks (e.g. a remote LAN that needs to be "integrated" with a central LAN over IPSec but I can't find anything addressing the other situation -- remote user(s) where the connecting IPs are not known in advance, such as a person with a laptop or smartphone in a

...6_addr_is_multicast(&fl.fl6_dst)) diff -urN a/net/key/af_key.c b/net/key/af_key.c --- a/net/key/af_key.c 2007-05-25 12:21:11.000000000 +0300 +++ b/net/key/af_key.c 2007-05-25 12:21:11.000000000 +0300 @@ -1166,7 +1166,8 @@ /* Nobody uses this, but we try. */ x->sel.family = pfkey_sadb_addr2xfrm_addr(addr, &x->sel.saddr); x->sel.prefixlen_s = addr->sadb_address_prefixlen; - } + } else + x->sel.family = x->props.family; /* Conservative */ if (ext_hdrs[SADB_X_EXT_NAT_T_TYPE-1]) { struct sadb_x_nat_t_type* n_type; @@ -176...