LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 11-09-2006, 10:34 PM   #1
piggyj
LQ Newbie
 
Registered: May 2006
Posts: 11

Rep: Reputation: 0
Ipsec error: SPI


output of setkey -D

10.196.230.18 10.80.110.112
esp mode=transport spi=2993(0x00000bb1) reqid=0(0x00000000)
E: 3des-cbc 39393035 39653966 39326166 36663134 36343063 61616264
seq=0x00000000 replay=0 flags=0x00000000 state=mature
created: Nov 10 12:28:19 2006 current: Nov 10 12:28:32 2006
diff: 13(s) hard: 0(s) soft: 0(s)
last: hard: 0(s) soft: 0(s)
current: 0(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 0 hard: 0 soft: 0
sadb_seq=1 pid=13962 refcnt=0
10.80.110.112 10.196.230.18
esp mode=transport spi=2993(0x00000bb1) reqid=0(0x00000000)
E: 3des-cbc 39393035 39653966 39326166 36663134 36343063 61616264
seq=0x00000000 replay=0 flags=0x00000000 state=mature
created: Nov 10 12:28:19 2006 current: Nov 10 12:28:32 2006
diff: 13(s) hard: 0(s) soft: 0(s)
last: hard: 0(s) soft: 0(s)
current: 0(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 0 hard: 0 soft: 0

here's my setkey.sh

#!/sbin/setkey -f
flush;
spdflush;
add 10.196.230.18 10.80.110.112 esp 0x00000bb1 -E 3des-cbc "99059e9f92af6f14640caabd" ;
add 10.80.110.112 10.196.230.18 esp 0x00000bb1 -E 3des-cbc "99059e9f92af6f14640caabd" ;
spdadd 10.196.230.18 10.80.110.112 any -P out ipsec esp/transport//use;
spdadd 10.80.110.112 10.196.230.18 any -P in ipsec esp/transport//use;


then i get this error:

2006-11-10 10:37:53: DEBUG: pfkey.c:1326k_recvadd(): ADD message is not interesting because pid 6618 is not mine.
2006-11-10 10:37:53: DEBUG: pfkey.c:195fkey_handler(): get pfkey ADD message
2006-11-10 10:37:53: DEBUG: pfkey.c:1326k_recvadd(): ADD message is not interesting because pid 6618 is not mine.


how do i get the SID? it seems like this entry on my setkey.sh is faulty:


add 10.196.230.18 10.80.110.112 esp 0x00000bb1 -E 3des-cbc "99059e9f92af6f14640caabd" ;
add 10.80.110.112 10.196.230.18 esp 0x00000bb1 -E 3des-cbc "99059e9f92af6f14640caabd" ;


any ideas?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
SPI Test application for PXA255 SBC jasdeep_js Linux - Kernel 0 09-20-2006 01:51 AM
IPSEC Error using PPPoE KennedyM3 Suse/Novell 1 09-07-2006 12:11 PM
LXer: New SPI board of directors and officers LXer Syndicated Linux News 0 08-02-2006 06:54 AM
LXer: Debian DPL Threatens to Leave SPI Over Sun Java LXer Syndicated Linux News 2 06-07-2006 08:14 PM
ipsec pk21 Linux - Software 2 01-30-2003 06:39 AM


All times are GMT -5. The time now is 09:22 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration