Fedora Linux Support Community & Resources Center
  #1  
Old 7th January 2007, 03:58 AM
SatelliteX Offline
Registered User
 
Join Date: Jun 2005
Posts: 47
IPsec & Racoon problems

I am trying to set up IPSEC NET2NET on FC6 with one of the machines behind a NAT firewall. I followed the insturctions for NAT-T but keep on getting LIBIPSEC error.
Does anyone know how to overcome this?


Jan 6 15:07:45 scout racoon: INFO: IPsec-SA expired: AH/Tunnel XXX.XXX.XXX.XXX[0]->192.168.1.90[0] spi=66267301(0x3f328a5)
Jan 6 15:07:45 scout racoon: INFO: IPsec-SA expired: ESP/Tunnel XXX.XXX.XXX.XXX[0]->192.168.1.90[0] spi=208885747(0xc7357f3)
Jan 6 15:07:47 scout racoon: INFO: initiate new phase 2 negotiation: 192.168.1.90[4500]<=>XXX.XXX.XXX.XXX[4500]
Jan 6 15:07:47 scout racoon: INFO: NAT detected -> UDP encapsulation (ENC_MODE 1->3).
Jan 6 15:07:47 scout racoon: INFO: NAT detected -> UDP encapsulation (ENC_MODE 1->3).
Jan 6 15:07:47 scout racoon: INFO: Adjusting my encmode UDP-Tunnel->Tunnel
Jan 6 15:07:47 scout racoon: INFO: Adjusting peer's encmode UDP-Tunnel(3)->Tunnel(1)
Jan 6 15:07:47 scout racoon: INFO: Adjusting my encmode UDP-Tunnel->Tunnel
Jan 6 15:07:47 scout racoon: INFO: Adjusting peer's encmode UDP-Tunnel(3)->Tunnel(1)
Jan 6 15:07:47 scout racoon: ERROR: libipsec failed send update_nat (No algorithm specified)
Jan 6 15:07:47 scout racoon: ERROR: pfkey update failed.
Jan 6 15:07:47 scout racoon: ERROR: failed to process packet.
Jan 6 15:07:47 scout racoon: ERROR: phase2 negotiation failed
Reply With Quote
  #2  
Old 9th December 2007, 07:46 PM
ekimd Offline
Registered User
 
Join Date: Mar 2006
Location: /dev/random
Posts: 21
Did you ever find a solution to this?
Reply With Quote
  #3  
Old 10th December 2007, 01:53 AM
SatelliteX Offline
Registered User
 
Join Date: Jun 2005
Posts: 47
Nope, no solution yet.
Reply With Quote
  #4  
Old 12th January 2008, 09:14 PM
ekimd Offline
Registered User
 
Join Date: Mar 2006
Location: /dev/random
Posts: 21
I got around this by making my ipsec box my NAT box too.
Reply With Quote
Reply

Tags
ipsec, problems, racoon

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Nortel Contivity, racoon juszczec Servers & Networking 0 5th May 2006 07:06 PM
Racoon VPN to Cisco FW Jumpy Servers & Networking 1 9th March 2006 03:36 AM


Current GMT-time: 04:14 (Friday, 28-11-2014)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat
River Ganga at Rishikesh - Cinamon Lakeside Colombo - Ciudad de Zamboanga Photos