Hi,
I'm trying to connect a Solaris 8 Sparc machine an Linux Intel machine
with IPsec.
I have the linux side sorted out, but I'm seeing some odd behaviour on
the solaris side:
I have created a /etc/inet/ipseckey file as follows:
flush
add esp spi 0x323 src 10.248.49.22 dst 10.248.49.23 \
auth_alg md5 encr_alg 3des \
authkey 2c02e4555aae74b3e727c6967c903379 \
encrkey d9ca15512cf07108cde84c660ddc1b8cabcdef0123456789
add esp spi 0x323 src 10.248.49.23 dst 10.248.49.22 \
auth_alg md5 encr_alg 3des \
authkey 2c02e4555aae74b3e727c6967c903379 \
encrkey d9ca15512cf07108cde84c660ddc1b8cabcdef0123456789
When I do ipseckey -f /etc/inet/ipseckey I get:
# ipseckey -f /etc/inet/ipseckey
Reply message from PF_KEY timed out.
I've come across other people who have got the same, but have no idea on
know to fix it.
The answer I've got is that ipsec doesn't work on Solaris 8, but is
fixed on Solaris 9.
I've had a look at patches for Solaris 8, but can't fins anything related.
Unforntunately upgrading to Solaris 9 isn't an option at the moment.
Has anyone seen this error before, and does anyone know how to fix the
problem?
Conor
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
