On Fri, 13 Sep 2002, Matthias Drochner wrote:

> After trying a couple of times - yes, this happens for me too.
> If there are two pairs of SAs on both sides, and they are
> consistent, everything works.
> But in the case I described there was one pair on one side
> (the laptop), and two pairs on the other (the gateway), and
> the gateway tried to use the one unknown to the other
> (or, to be exact, considered expired, as shown in my other
> mail).

Is your racoon current? There was a bug where it didn't flush old SAs when
renegotiatiing.

Take care,

Bill