From owner-freebsd-stable Fri May 3 13:14:39 2002 Delivered-To: freebsd-stable@freebsd.org Received: from pD9EB10DE.dip.t-dialin.net (pD9EB10DE.dip.t-dialin.net [217.235.16.222]) by hub.freebsd.org (Postfix) with ESMTP id 7056837B41A for ; Fri, 3 May 2002 13:14:33 -0700 (PDT) Received: from computer (computer.hq.gddn.org [192.168.176.1]) by eddi.hq.gddn.org (8.12.3/8.12.3) with SMTP id g43KEWr2066166 for ; Fri, 3 May 2002 22:14:32 +0200 (CEST) (envelope-from ari@snafu.de) Received: by localhost with Microsoft MAPI; Fri, 3 May 2002 22:14:31 +0200 Message-ID: <01C1F2EF.E65F5F00@ari@snafu.de> From: Birk To: "'freebsd-stable@freebsd.org'" Subject: RE: port/racoon broken Date: Fri, 3 May 2002 22:14:30 +0200 Organization: * X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4025 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > > The latest racoon (20020426a) seems to be broken. > > >From the log: > >=20 > > | isakmp_quick.c:2028:get_proposal_r(): > > | no policy found: =E0=BA ^H4=F8=BF=BF<=F9=BF=BF=E0u^E^H4=F8=BF=BF^V > > | pfkey.c:738:pfkey_timeover(): > > | M-^@=CC ^H`M-^S ^H give up to get IPsec-SA due to time up to wait. >=20 > Where is this log? I can't find it. Then again may not have it = enabled. racoon writes to syslog as > /kernel: IPv4 ESP input: no key association found for spi 37447490 This is not from racoon but the ipsec part of the kernel. I got them=20 too but had no problems (again, with the old racoon). I guess this=20 normal ipsec noise from expired key assignments. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message