Matt,I don't know why you're getting the error, but you can't have ESP enabled in the kernel if you want to run vpnc. If ESP is enabled in the kernel then the kernel will grab the ESP packets and they won't ever get to vpnc running in userland. I just verified that.
Thanks, *Jason Mitchell* bigjar systems 5430 Lynx Lane | Suite 127 | Columbia, MD 21044www.bigjar.com <http://www.bigjar.com> p: 443.430.9739 | f: 443-583-0289 | c: 410-921-0272 “THINK GREEN…and print this email only if necessary. Doing the Right Things to Make a Difference”.
On 04/05/2011 03:29 PM, matthew sporleder wrote:
I'm trying to use vpnc and getting the following error:
socket(PF_INET, SOCK_RAW, IPPROTO_ESP): Protocol not supported
I wrote the following test program and get the same thing:
#include<stdio.h>
#include<sys/socket.h>
#include<netinet/in.h>
#include<errno.h>
#include<string.h>
int main(int argc, char *argv[])
{
int sock;
sock = socket(PF_INET, SOCK_RAW, IPPROTO_ESP);
if ( sock< 0 )
{
perror("sock problem");
}
}
Is this because my kernel has IPSEC commented out?
Thanks,
Matt