Subject: Re: Racoon
To: None <firstname.lastname@example.org>
From: Patrick Welche <email@example.com>
Date: 09/04/2001 15:15:06
On Tue, Sep 04, 2001 at 10:04:40AM -0400, firstname.lastname@example.org wrote:
> I'm trying to get racoon running for vpn services, running 1.5.1, racoon package racoon-20010418a, and openssl package openssl-0.9.6. When I start racoon I get,
> WARNING: pfkey.c:2055:pk_check alg(): compression algorithm cannot be checked.
> ERROR: isakmp.c:1270:isakmp_open(): failed to bind (addresss already in use).
> Can someone point me in the right direction?
> Sorry if this should be on another list.
% diff -u /usr/share/examples/racoon/racoon.conf.sample /etc/racoon/racoon.conf
--- /usr/share/examples/racoon/racoon.conf.sample Sat Jul 28 19:29:40 2001
+++ /etc/racoon/racoon.conf Wed Mar 7 11:37:12 2001
@@ -53,7 +53,8 @@
lifetime time 12 hour ;
lifetime byte 50 MB ;
- encryption_algorithm 3des, cast128, blowfish, des, twofish, rijndael ;
+ encryption_algorithm 3des, cast128, blowfish, des, rijndael ;
+# got rid of twofish 7 Mar 2001 PW (apparently not supported)
authentication_algorithm hmac_sha1, hmac_md5 ;
compression_algorithm deflate ;
Hope this helps.. not obvious from the above that it is twofish that is the
prob, but I am running ipsec at the moment..