Package: racoon
Version: 1:0.8.0-14
Severity: normal
Dear Maintainer,
*** Please consider answering these questions, where appropriate ***
* What led up to the situation?
* What exactly did you do (or not do) that was effective (or
ineffective)?
* What was the outcome of this action?
* What outcome did you expect instead?
*** End of the template - remove these lines ***
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: kazs...@corundum.minerals.linuxfront.com
To: Debian Bug Tracking System <sub...@bugs.debian.org>
Subject: racoon generates a wrong policy for transport mode over NAT.
Bcc: kazs...@corundum.minerals.linuxfront.com
Package: racoon
Version: 1:0.8.0-14
Severity: minor
Dear Maintainer,
I tried to configure racoon with 'generate_polity on' for transport mode
over NAT, but racoon generated a policy with a peer address behind NAT and
transport mode did not work at all. Tunnel mode was OK so I changed the
configuration to use tunnel mode just for 1-to-1 IPSec communication.
I do not know if IPSec transport mode should work with NAT-Traversal, but
the policy generation is still broken. If it cannot generate a working
policy, it should fail in negotiation without generating a broken one.
-- System Information:
Debian Release: 7.7
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-4-686-pae (SMP w/1 CPU core)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Versions of packages racoon depends on:
ii adduser 3.113+nmu3
ii debconf [debconf-2.0] 1.5.49
ii ipsec-tools 1:0.8.0-14
ii libc6 2.13-38+deb7u6
ii libcomerr2 1.42.5-1.1
ii libgssapi-krb5-2 1.10.1+dfsg-5+deb7u2
ii libk5crypto3 1.10.1+dfsg-5+deb7u2
ii libkrb5-3 1.10.1+dfsg-5+deb7u2
ii libldap-2.4-2 2.4.31-1+nmu2
ii libpam0g 1.1.3-7.1
ii libssl1.0.0 1.0.1e-2+deb7u13
ii perl 5.14.2-21+deb7u2
racoon recommends no packages.
racoon suggests no packages.
-- Configuration Files:
/etc/racoon/psk.txt [Errno 13] Permission denied: u'/etc/racoon/psk.txt'
/etc/racoon/racoon.conf changed [not included]
-- debconf information:
* racoon/config_mode: direct
-- System Information:
Debian Release: 7.7
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-4-686-pae (SMP w/1 CPU core)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Versions of packages racoon depends on:
ii adduser 3.113+nmu3
ii debconf [debconf-2.0] 1.5.49
ii ipsec-tools 1:0.8.0-14
ii libc6 2.13-38+deb7u6
ii libcomerr2 1.42.5-1.1
ii libgssapi-krb5-2 1.10.1+dfsg-5+deb7u2
ii libk5crypto3 1.10.1+dfsg-5+deb7u2
ii libkrb5-3 1.10.1+dfsg-5+deb7u2
ii libldap-2.4-2 2.4.31-1+nmu2
ii libpam0g 1.1.3-7.1
ii libssl1.0.0 1.0.1e-2+deb7u13
ii perl 5.14.2-21+deb7u2
racoon recommends no packages.
racoon suggests no packages.
-- Configuration Files:
/etc/racoon/psk.txt [Errno 13] Permission denied: u'/etc/racoon/psk.txt'
/etc/racoon/racoon.conf changed [not included]
-- debconf information:
* racoon/config_mode: direct
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
