Ipsec error: SPI
 

output of setkey -D

10.196.230.18 10.80.110.112
esp mode=transport spi=2993(0x00000bb1) reqid=0(0x00000000)
E: 3des-cbc 39393035 39653966 39326166 36663134 36343063 61616264
seq=0x00000000 replay=0 flags=0x00000000 state=mature
created: Nov 10 12:28:19 2006 current: Nov 10 12:28:32 2006
diff: 13(s) hard: 0(s) soft: 0(s)
last: hard: 0(s) soft: 0(s)
current: 0(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 0 hard: 0 soft: 0
sadb_seq=1 pid=13962 refcnt=0
10.80.110.112 10.196.230.18
esp mode=transport spi=2993(0x00000bb1) reqid=0(0x00000000)
E: 3des-cbc 39393035 39653966 39326166 36663134 36343063 61616264
seq=0x00000000 replay=0 flags=0x00000000 state=mature
created: Nov 10 12:28:19 2006 current: Nov 10 12:28:32 2006
diff: 13(s) hard: 0(s) soft: 0(s)
last: hard: 0(s) soft: 0(s)
current: 0(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 0 hard: 0 soft: 0

here's my setkey.sh

#!/sbin/setkey -f
flush;
spdflush;
add 10.196.230.18 10.80.110.112 esp 0x00000bb1 -E 3des-cbc "99059e9f92af6f14640caabd" ;
add 10.80.110.112 10.196.230.18 esp 0x00000bb1 -E 3des-cbc "99059e9f92af6f14640caabd" ;
spdadd 10.196.230.18 10.80.110.112 any -P out ipsec esp/transport//use;
spdadd 10.80.110.112 10.196.230.18 any -P in ipsec esp/transport//use;

then i get this error:

2006-11-10 10:37:53: DEBUG: pfkey.c:1326:pk_recvadd(): ADD message is not interesting because pid 6618 is not mine.
2006-11-10 10:37:53: DEBUG: pfkey.c:195:pfkey_handler(): get pfkey ADD message
2006-11-10 10:37:53: DEBUG: pfkey.c:1326:pk_recvadd(): ADD message is not interesting because pid 6618 is not mine.

how do i get the SID? it seems like this entry on my setkey.sh is faulty:


add 10.196.230.18 10.80.110.112 esp 0x00000bb1 -E 3des-cbc "99059e9f92af6f14640caabd" ;
add 10.80.110.112 10.196.230.18 esp 0x00000bb1 -E 3des-cbc "99059e9f92af6f14640caabd" ;

any ideas?