Solved

ipsec on Solaris 8

Posted on 2004-04-03
6
364 Views
Last Modified: 2013-12-27
Hi,

I am trying to setup ipsec between two Sun servers running Solaris 8. I've pretty much followed the entire documentation available on the Sun Website to set this up. However, I've not been too successful. I keep getting the following error message every time I try to ping from the second node to the primary node.

Apr  4 12:36:08 hostname ipsecah: [ID 368763 kern.error] ah_inbound_v4 : No association found, spi=0x1001 ,dst addr a502606.

Can someone throw more light on what I've not done correctly ?

Thanks
0
Comment
Question by:hbsharp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
6 Comments
 
LVL 1

Expert Comment

by:keie
ID: 10892559
Did you notify the kernel of the SPI's you are using?
 
init script contents:
      if [ -f /etc/inet/ipseckeys ] ; then
                /usr/sbin/ipseckey -f /etc/inet/ipseckeys
      f

ipseckeys contents for esp encryption:
add esp spi 0x3000 src W.X.Y.Z dst w.x.y.z\
auth_alg md5 encr_alg des \
authkey hexhexhexhexhexhexhexhexhexhexhex \
encrkey hexhexhexhexhexh
add esp spi 0x3001 src w.x.y.z dst W.X.Y.Z \
auth_alg md5 encr_alg des \
authkey hexhexhexhexhexhexhexhexhexhexhex \
encrkey hexhexhexhexhexh
0
 
LVL 1

Author Comment

by:hbsharp
ID: 10901625
I am trying to a very basic setup initially. My ipseckeys looks very similar to the one suggested by you. However, I am not using md5 as my auth_alg. I'll try out your suggestion and will update the site.

Thanks for your time.
0
 
LVL 1

Accepted Solution

by:
hbsharp earned 0 total points
ID: 11024834
Hi,

We figured out what the problem was. It was just that we were missing a couple of packages required for ipsec to work. So, if you encounter problems setting up IPSEC, please check to ensure that you have the following packages installed,

SUNWcr
SUNWcrx

Thanks
0
 
LVL 1

Author Comment

by:hbsharp
ID: 11106672
Hi Yuzh,

That woud be great. Thanks for your help.

Regards,
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
AIX Server 10 97
Need some help with tutorials or training material/videos in unix 1 86
can't umount nfs share after server goes offline... 4 104
Shell Script on AIX 7 179
I promised to write further about my project, and here I am.  First, I needed to setup the Primary Server.  You can read how in this article: Setup FreeBSD Server with full HDD encryption (http://www.experts-exchange.com/OS/Unix/BSD/FreeBSD/A_3660-S…
Why Shell Scripting? Shell scripting is a powerful method of accessing UNIX systems and it is very flexible. Shell scripts are required when we want to execute a sequence of commands in Unix flavored operating systems. “Shell” is the command line i…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question