Ipsec doesn't work with carp interface

ask · Aug 13, 2008, 3:05 AM

When I make an IPsec connection use a carp interface, I end up with an error in the log that racoon "couldn't find configuration". The racoon.conf is

path pre_shared_key "/var/etc/psk.txt";

path certificate "/var/etc";

If I change the interface to be a "real" interface then I get a proper configuration file.

This is with the "Tue Aug 12 16:36:19 EDT 2008" snapshot.

ask · Aug 13, 2008, 8:16 PM

When I make an IPsec connection use a carp interface, I end up with an error in the log that racoon "couldn't find configuration". […]

Any ideas anyone? Anything I can do to help debug? Git repository up yet? :-)

databeestje · Aug 17, 2008, 9:00 PM

I just attempted a fix in CVS, can you please try the next 1.2.1 snapshot build?

Thanks.

ask · Aug 19, 2008, 7:37 AM

I just attempted a fix in CVS, can you please try the next 1.2.1 snapshot build?

Thanks.

Hi Seth,

Yup - looking good (with Sun Aug 17 23:20:33 EDT 2008). I got it configured to use the CARP IP now. Thank you!

I didn't test the failover of IPsec, but I didn't have problems with that in the past (or do anything special) on my custom nanobsd based platform.

- ask