[strongSwan] Problem: "unable to install policy -the same policy for reqid XXXX exists "
Tobias Brunner
tobias at strongswan.org
Fri Nov 23 11:11:39 CET 2018
Hi Sven,
> We are using strongSwan 5.6.2 on a Linux kernel 4.1.39.
Try using a newer strongSwan version.
> The installed policy (in this case) is the following:
>
> src 10.0.0.0/8 dst 192.168.3.67/32
> dir out priority 379519 ptype main
> tmpl src 217.6.20.66 dst 84.160.101.118
> proto esp spi 0x0f95ddf2 reqid 4388 mode tunnel
Use the full log to see why it may have been left there. That log
snippet you added is not really useful.
> I already tried to change "auto=add" to "auto=route", which I found in a description
> of a similar problem, but that changed nothing...
auto=route makes no sense on a gateway for roadwarriors.
Regards,
Tobias
More information about the Users
mailing list