ports/98353: ipsec-tools fails to exchange keys between different architectures
Andrew Wiles
adw at jara23.co.uk
Fri Jun 2 04:30:15 UTC 2006
>Number: 98353
>Category: ports
>Synopsis: ipsec-tools fails to exchange keys between different architectures
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Fri Jun 02 04:30:13 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator: Andrew Wiles
>Release: 5.5-RELEASE
>Organization:
jara23.co.uk
>Environment:
FreeBSD skynet.asgard.jara23.co.uk 5.5-RELEASE FreeBSD 5.5-RELEASE #1: Fri May 26 18:27:16 BST 2006 adw at skynet.asgard.jara23.co.uk:/usr/obj/usr/src/sys/SKYNET amd64
AND
FreeBSD odin.valhalla.jara23.co.uk 5.5-RELEASE FreeBSD 5.5-RELEASE #0: Thu Jun 1 01:00:00 BST 2006 adw at odin.valhalla.jara23.co.uk:/usr/obj/usr/src/sys/ODIN i386
>Description:
After having a stable working vpn between two i386 servers one was upgraded to amd64. After this hardware upgrade the vpn fails to connect with the amd64 server reporting the following debug output for racoon/ipsec-tools
Jun 2 04:49:20 racoon: 2006-06-02 04:49:20: DEBUG: begin.
Jun 2 04:49:20 racoon: 2006-06-02 04:49:20: DEBUG: seen nptype=8(hash)
Jun 2 04:49:20 racoon: 2006-06-02 04:49:20: DEBUG: invalid length of payload
Jun 2 04:49:20 racoon: 2006-06-02 04:49:20: ERROR: failed to pre-process packet.
Jun 2 04:49:34 racoon: 2006-06-02 04:49:34: ERROR: x.x.x.x give up to get IPsec-SA due to time up to wait.
>How-To-Repeat:
take a working ipsec & ipsec-tools (racoon) vpn between two i386 machines and replace one with amd64
>Fix:
none known
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list