such policy does not already exist Error?



  • Has anyone seen this issue. I'm running 1.2.2 and setup the shrewsoft vpn client and configured the firewall.
    The VPN connects but i keep getting these errors below and its not passing any traffic. I have setup the exact same vpn on version 1.2.3 with no issues. Does anyone know of a workaround for this other than upgrading?

    racoon: [Unknown Gateway/Dynamic]: ERROR: such policy does not already exist: "172.16.20.0/24[0] 10.10.10.1/32[0] proto=any dir=out"
    racoon: [Unknown Gateway/Dynamic]: ERROR: such policy does not already exist: "10.10.10.1/32[0] 172.16.20.0/24[0] proto=any dir=in"
    racoon: [Unknown Gateway/Dynamic]: INFO: IPsec-SA established: ESP 139.146.152.222[0]->139.146.128.190[0] spi=4016655458(0xef694c62)
    racoon: [Unknown Gateway/Dynamic]: INFO: IPsec-SA established: ESP 139.146.128.190[0]->139.146.152.222[0] spi=152012761(0x90f87d9)
    racoon: [Unknown Gateway/Dynamic]: INFO: no policy found, try to generate the policy : 10.10.10.1/32[0] 172.16.20.0/24[0] proto=any dir=in


  • Rebel Alliance Developer Netgate

    That isn't really an error, per se, but a warning. It is normal if you are using Aggressive mode, if I recall correctly.

    Your problem is likely elsewhere, not with that message.


Log in to reply