File exists?

"Michael P. Soulier" <michael_soulier@xxxxxxxxx> · Mon, 5 Mar 2007 15:45:53 -0500

Hello,

I'm trying to put 3 nodes in a vpn in tunnel mode. 

When I run setkey on the following file, I end up with

The result of line 33: File exists.

That error isn't overly helpful, so I was hoping that someone could explain
the issue. 

Here's the file, with line 33 highlighted.

Help appreciated.

Mike

# Flush the SAD and SPD
flush;
spdflush;

# Add SA for 10.33.15.145 to 10.31.8.96 in tunnel mode
add 10.33.15.145 10.31.8.96 esp 0x201 -m tunnel -E 3des-cbc
    0xB1A03D22D78D6357084B13E930A27F72ECAFB61B5D398A22
    -A hmac-md5 0x2F9FCE98685ED329C2E9A5C6CC7C5E20;
# Add SA for 10.31.8.96 to 10.33.15.145 in tunnel mode
add 10.31.8.96 10.33.15.145 esp 0x301 -m tunnel -E 3des-cbc
    0x80C16F148B2C11A0E65939D9D945C5630BE09B7F2EC75186
    -A hmac-md5 0xFC2B609F54DFFA62040AC8D9A4657387;

# Add SA for 10.33.15.145 to 10.33.15.151 in tunnel mode
add 10.33.15.145 10.33.15.151 esp 0x201 -m tunnel -E 3des-cbc
    0xB1A03D22D78D6357084B13E930A27F72ECAFB61B5D398A22
    -A hmac-md5 0x2F9FCE98685ED329C2E9A5C6CC7C5E20;
# Add SA for 10.33.15.151 to 10.33.15.145 in tunnel mode
add 10.33.15.151 10.33.15.145 esp 0x301 -m tunnel -E 3des-cbc
    0xE0C9C70351CD3B4E2D9024FC1CACBC8B0D288E6981417259
    -A hmac-md5 0x8FC64D13209EFC7732D4A9A1159BA758; <======== line 33

# Add policy for 172.16.113.0/24 -> 192.168.19.0/24 over
# the 10.33.15.145-10.31.8.96 tunnel
spdadd 172.16.113.0/24 192.168.19.0/24 any -P out ipsec
    esp/tunnel/10.33.15.145-10.31.8.96/require;

# Add policy for 192.168.19.0/24 -> 172.16.113.0/24 over
# the 10.31.8.96-10.33.15.145 tunnel
spdadd 192.168.19.0/24 172.16.113.0/24 any -P in ipsec
    esp/tunnel/10.31.8.96-10.33.15.145/require;

# Add policy for 172.16.113.0/24 -> 172.16.129.0/24 over
# the 10.33.15.145-10.33.15.151 tunnel
spdadd 172.16.113.0/24 172.16.129.0/24 any -P out ipsec
    esp/tunnel/10.33.15.145-10.33.15.151/require;

# Add policy for 172.16.129.0/24 -> 172.16.113.0/24 over
# the 10.33.15.151-10.33.15.145 tunnel
spdadd 172.16.129.0/24 172.16.113.0/24 any -P in ipsec
    esp/tunnel/10.33.15.151-10.33.15.145/require;

-- 
Michael P. Soulier <michael_soulier@xxxxxxxxx>, 613-592-2122 x2522
"Any intelligent fool can make things bigger and more complex... It takes a
touch of genius - and a lot of courage to move in the opposite direction."
--Albert Einstein
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

File exists?

Linux Advanced Routing and Traffic Control