Subject: Re: old -> ipsec-tools racoon migration problem
To: None <kilbi@rad.rwth-aachen.de>
From: Klaus Klein <kleink@mibh.de>
List: current-users
Date: 02/23/2005 17:12:21
On Wednesday, 23. February 2005 00:50, Markus W Kilbinger wrote:
> Hi!
> 
> I've just installed a new -current kernel and userland (of today)
> incl. ipsec-tools racoon.
> 
> Beside some warnings the new racoon (with the old racoon.conf)
> complains about
> 
>   Feb 22 23:32:38 mogli racoon: INFO: @(#)ipsec-tools 0.6-base (http://ipsec-tools.sourceforge.net) 
>   Feb 22 23:32:38 mogli racoon: INFO: @(#)This product linked OpenSSL 0.9.7d 17 Mar 2004 (http://www.openssl.org/) 
>   Feb 22 23:32:38 mogli racoon: INFO: 134.130.11.81[500] used as isakmp port (fd=7) 
>   Feb 22 23:32:38 mogli racoon: ERROR: setsockopt(UDP_ENCAP_ESPINUDP_NON_IKE): Invalid argument 
> 
> ... and does not work anymore.

In a nutshell, it was dealing with the absence of NAT-PT support from the
kernel rather ungracefully.  This is fixed now on the trunk.


- Klaus
> 
> What am I missing?
> 
> Any hint/comment appreciated
> 
> Markus.
> 
>