[VPN] racoon error - PLEASE HELP!!!]

John strgout at unixjunkie.com
Sun Apr 10 22:10:27 EDT 2005


I'm guessing the include statment has a sainfo anonymous.
It should read something like ..

sainfo address $yoursrcnetwork/cidr any address $destnetwork/cidr any {
	encryption_algorithm 3des, blowfish 448, rijndael ;
	authentication_algorithm hmac_sha1, hmac_md5 ;
	compression_algorithm deflate ;
}

If you are still having problems then stop using the include statment
and put it directly into the config just in case.



On Tue, Apr 05, 2005 at 04:39:16PM +0300, Fatma Afacan wrote:
> 
> Hello.
> 
> I have a VPN-racoon problem and when I search this problem with google, I
> find your problem. Your problem is the same with me.There is no fix for
> this problem in the address below :
> 
> http://marc.free.net.ph/message/20040224.004949.d40501a9.html
> 
> If you help me, I would be very pleased.
> I have no much time.
> 
> I am waiting your reply.
> 
> -- 
> Fatma Afacan
> 
> Your (and also) problem :
> 
> ---------------------------------------------------------------------------
> ---------------------------------------------------------------------------
> 
> Author: hasitha perera
> Date: 2004-02-24 02:49 +200
> To: jermwoliver, vpn
> CC:
> Subject: Re: [VPN] racoon error
> Thank you for the reply
> 
> 
> >what type of device are you trying to connect with using this enterprise
> linux box?
> I am going to make host to host connection.
> 
> when I ping one box to another I have error
> connect: Resource temporarily unavailable
> 
> do you think, is this error have relation with racoon error.
> 
> 
> 
> >From: Jeremy Oliver <jermwoliver at yahoo.com>
> >To: hasitha perera <hpvpn at hotmail.com>, vpn at lists.shmoo.com
> >Subject: Re: [VPN] racoon error
> >Date: Mon, 23 Feb 2004 11:16:03 -0800 (PST)
> >
> >what type of device are you trying to connect with using this enterprise
> linux box?
> >
> >hasitha perera <hpvpn at hotmail.com> wrote:Dear Sir/Madam
> >
> >I am going to build VPN using IPsec. I use Enterprise Linux 3 WS. Still I
> have problems with VPN. When I up the vpn connection, i had racoon err
> given bellow.
> >
> >this is the log file of racoon.
> >
> >2004-02-20 11:46:59: INFO: main.c:174:main(): @(#)racoon 20001216
> 20001216 sakane at kame.net
> >2004-02-20 11:46:59: INFO: main.c:175:main(): @(#)This product linked
> OpenSSL 0.9.7a Feb 19 2003 (http://www.openssl.org/)
> >2004-02-20 11:46:59: INFO: isakmp.c:1362:isakmp_open():
> >100.100.100.100[500]used as isakmp port (fd=6)
> >2004-02-20 11:46:59: INFO: isakmp.c:1362:isakmp_open(): 127.0.0.1[500]
> used as isakmp port (fd=7)
> >2004-02-20 11:47:11: ERROR: cftoken.l:445:yyerror():
> >/etc/racoon/racoon.conf:16: "}" duplicated sainfo: anonymous
> >2004-02-20 11:47:11: ERROR: cfparse.y:1334:cfparse(): fatal parse failure (1
> >errors)
> >2004-02-20 11:47:11: ERROR: session.c:291:check_sigreq(): configuration read
> >failed
> >
> >/etc/racoon/racoon.conf is like bellow.
> >1.
> >2. # Racoon IKE daemon configuration file.
> >3. # See 'man racoon.conf' for a description of the format and entries. 4.
> >5. path include "/etc/racoon";
> >6. path pre_shared_key "/etc/racoon/psk.txt";
> >7. path certificate "/etc/racoon/certs";
> >8.
> >9. sainfo anonymous
> >10.{
> >11. pfs_group 2;
> >12. lifetime time 12 hour ;
> >13. encryption_algorithm 3des, blowfish 448, rijndael ;
> >14. authentication_algorithm hmac_sha1, hmac_md5 ;
> >15. compression_algorithm deflate ;
> >16.}
> >17.include "/etc/racoon/100.100.100.100.conf"
> >~
> >
> >any one can suggest how should i can solve this problem.



More information about the VPN mailing list