[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
(racoon 546) Re: sendmsg (Operation not permitted) while ipsec sa negociation
- To: racoon@kame.net, cedric.delfosse@linbox.com
- Subject: (racoon 546) Re: sendmsg (Operation not permitted) while ipsec sa negociation
- From: Satoshi Inoue <inoue@ntes.ipv6.nec.co.jp>
- Date: Thu, 17 Jun 2004 20:03:11 +0900
- Delivered-to: racoon-archive@kame.net
- Delivered-to: racoon-outgo@kame.net
- Delivered-to: racoon@kame.net
- In-reply-to: <1087378124.30763.44.camel@replic.freealter.fr>
- References: <1087378124.30763.44.camel@replic.freealter.fr>
- Reply-to: racoon@kame.net
- Sender: owner-racoon@kame.net
On Wed, 16 Jun 2004 11:28:47 +0200
Cedric Delfosse <cedric.delfosse@linbox.com> wrote:
> Jun 16 10:35:37 vpn racoon: ERROR: sendmsg (Operation not permitted)
> Jun 16 10:35:37 vpn racoon: ERROR: sendfromto failed
> Jun 16 10:35:37 vpn racoon: ERROR: failed to begin ipsec sa
> negotication.
<snip>
> Now for each roadwarrior connecting to GW1, we want the IPSec traffic to
> go through eth2. Roadwarriors are connecting to eth2 interface IP. As
> the default route on GW1 is eth1, a route is added "manually" (a simple
> web interface) for each roadwarrior IP so that the traffic is re-routed
> through eth2.
OK, so eth2 terminates two IPsec SAs, right?
> And it looks like that just adding these routes are causing the bug,
> because else the IPsec tunnel between GW1 and GW2 works really fine.
Could you get some more logs? IPsec SA/SP databases and racoon.conf,
etc. are welcome too :-)