<div>Hi All,</div>
<div> </div>
<div>I have installed tpm openswan for Fedora Version 4, I need to establish a vpn with a cisco 800, the problem es that the VPN can't be established, the message error in my linux is: ipsec__plutorun: ...could not start conn "tunnelipsec"
</div>
<div> </div>
<div>I don't have firewall then I Haven't iptables rules, If I don't have firewall I need iptables rules ? is necesary?</div>
<div> </div>
<div>My configuration is:</div>
<div> </div>
<div>ipsec.conf</div>
<div>=========</div>
<div> </div>
<div># /etc/ipsec.conf - Openswan IPsec configuration file<br> #ike= "3des-md5-modp768"</div>
<div>
<p>version 2.0 </p>
<p>config setup<br> interfaces="ipsec0=eth0"<br> klipsdebug=none<br> plutodebug=none<br> forwardcontrol=yes</p>
<p>conn tunnelipsec<br> type=tunnel<br> left=<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://165.98.224.82/" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "165.98.224.82" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious: 165.98.224.82</a><br> leftsubnet=<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://172.16.1.0/24" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "172.16.1.0" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious:
172.16.1.0/24</a><br> right=<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://165.98.236.214/" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "165.98.236.214" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious: 165.98.236.214</a><br> rightsubnet=<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://172.16.26.0/24" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "172.16.26.0" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious:
172.16.26.0/24</a><br> esp=3des-md5-96<br> keyexchange=ike<br> pfs=no<br> authby=secret<br> ikelifetime=7800<br> compress=no<br> auto=start</p>
<p>include /etc/ipsec.d/no_oe.conf<br></p>
<p>ipsec.secrets</p>
<p>=========</p>
<p><a onclick="return top.js.OpenExtLink(window,event,this)" href="http://165.98.224.82/" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "165.98.224.82" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious: 165.98.224.82</a> <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://165.98.236.214/" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "165.98.236.214" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious:
165.98.236.214</a>: PSK "vp17226"</p>
<p> </p>
<p>Configuration for the router is:</p>
<p> </p>
<p>crypto isakmp policy 10<br> encr 3des<br> hash md5<br> authentication pre-share<br>crypto isakmp key vp17226 address <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://165.98.224.82/" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "165.98.224.82" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious:
165.98.224.82</a><br>!<br>!<br>crypto ipsec transform-set DICE esp-3des esp-sha-hmac <br>!<br>crypto map DICE 10 ipsec-isakmp <br> set peer <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://165.98.224.82/" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "165.98.224.82" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious:
165.98.224.82</a><br> set transform-set DICE <br> match address 100<br></p>
<p>interface Ethernet1<br> description PRIVADA<br> ip address <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://165.98.236.214/" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "165.98.236.214" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious: 165.98.236.214</a> <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://255.255.255.252/" target="_blank"></b></font><font color="red"><b>MailScanner has detected a possible fraud attempt from "255.255.255.252" claiming to be</b></font> <font color="red"><b>MailScanner warning: numerical links are often malicious:
255.255.255.252</a><br> duplex auto<br> crypto map DICE<br></p>
<p> </p>
<p>Somebody can help me? I need suggestions.</p>
<p> </p>
<p>Thanks in Advanced.</p>
<p>Regards.</p>
<p> </p></div>