<pre>I have one server Kubuntu with Linux Openswan<br>U2.4.4/K2.6.15.7-ubuntu1.1282006 (netkey)<br><br>on this computer I have two network cards<br><br>one eth0 - direct connection with ppp0 for adsl modem<br>IP: <a href="http://192.168.0.3"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font>
192.168.0.3</a><br>broadcast: <a href="http://192.168.0.255"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.255</a><br>mask: <a href="http://255.255.255.0"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 255.255.255.0</a><br><br>second eth1 for crossover cabel with Windows Xp client<br>IP: <a href="http://192.168.0.4"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font>
192.168.0.4</a><br>broadcast: <a href="http://192.168.0.255"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.255</a><br>mask: <a href="http://255.255.255.0"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 255.255.255.0</a><br><br>my ipsec.conf on Linux is<br><br>version 2.0<br><br>config setup<br> interfaces="ipsec0=eth1"
<br> klipsdebug=none<br> plutodebug=all<br> uniqueids=yes<br> nat_traversal=yes<br><br>conn %default<br> keyingtries=0<br> disablearrivalcheck=no<br> authby=rsasig<br><br>conn babylon3-do-babylon1
<br> type=tunnel<br> authby=rsasig<br> left=<a href="http://192.168.0.4"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.4</a><br> leftnexthop=%direct<br> right=<a href="http://192.168.0.5"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5</a><br> rightnexthop=%direct
<br> leftrsasigkey=%cert<br> rightrsasigkey=%cert<br> leftcert=babylon3.pem<br> rightcert=babylon4.pem<br> keyingtries=0<br> auto=start<br> pfs=yes<br><br>eth1 network card is direct connected with crossover cabel
<br>on my Windows Xp client with service pack 2 in which I have<br>one network card<br><br>eth0<br>IP: <a href="http://192.168.0.5"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5</a><br>mask: <a href="http://255.255.255.0"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 255.255.255.0</a><br>gateway: <a href="http://192.168.0.4"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font>
192.168.0.4</a><br><br><br>c:\ipsec\ipsec.conf<br><br>conn babylon3-do-babylon1<br> left=%any<br> right=<a href="http://192.168.0.4"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.4</a><br> rightsubnet=<a href="http://192.168.0.0/24"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.0/24</a>
<br> rightca=<a class="moz-txt-link-rfc2396E" href="mailto:C=S,S=Slovenia,L=Ljubljana,O=g,CN=Jure,E=babylon9@gmail.com">"C=S,S=Slovenia,L=Ljubljana,O=g,CN=Jure,E=babylon9@gmail.com"</a><br> network=auto<br> auto=start
<br> pfs=yes<br><br>c:\ipsec\ipsec.exe<br><br>The problem is when I connect and then pinging Kubuntu server. First is<br>negotiating for IP security. But then I can't get any packets<br>back, always lost 4 packets.<br>
<br>my log /var/log/auth.log says<br><br>Aug 30 09:20:18 localhost pluto[19001]: "babylon3-do-babylon1" #1:<br>initiating Main Mode<br>Aug 30 09:20:20 localhost pluto[19001]: initiate on demand from<br><a href="http://192.168.0.4:0"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font>
192.168.0.4:0</a> to <a href="http://192.168.0.5:0"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5:0</a> proto=0 state: fos_start because: acquire<br>Aug 30 09:20:47 localhost pluto[19001]: packet from <a href="http://192.168.0.5:1"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5:1</a>:<br>ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
<br>Aug 30 09:20:47 localhost pluto[19001]: packet from <a href="http://192.168.0.5:1"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5:1</a>:<br>ignoring Vendor ID payload [FRAGMENTATION]<br>Aug 30 09:20:49 localhost pluto[19001]: packet from <a href="http://192.168.0.5:1"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font>
192.168.0.5:1</a>:<br>received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set<br>to=106<br>Aug 30 09:20:50 localhost pluto[19001]: packet from <a href="http://192.168.0.5:1"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5:1</a>:<br>ignoring Vendor ID payload [Vid-Initial-Contact]
<br>Aug 30 09:20:51 localhost pluto[19001]: "babylon3-do-babylon1" #2:<br>responding to Main Mode<br>Aug 30 09:20:51 localhost pluto[19001]: "babylon3-do-babylon1" #2:<br>transition from state STATE_MAIN_R0 to state STATE_MAIN_R1
<br>Aug 30 09:20:52 localhost pluto[19001]: "babylon3-do-babylon1" #2:<br>STATE_MAIN_R1: sent MR1, expecting MI2<br>Aug 30 09:20:53 localhost pluto[19001]: packet from <a href="http://192.168.0.5:1"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5:1
</a>:<br>ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]<br>Aug 30 09:20:53 localhost pluto[19001]: packet from <a href="http://192.168.0.5:1"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5:1</a>:<br>ignoring Vendor ID payload [FRAGMENTATION]<br>
Aug 30 09:20:54 localhost pluto[19001]: packet from <a href="http://192.168.0.5:1"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5:1</a>:<br>received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set<br>to=106<br>Aug 30 09:20:54 localhost pluto[19001]: packet from
<a href="http://192.168.0.5:1"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5:1</a>:<br>ignoring Vendor ID payload [Vid-Initial-Contact]<br>Aug 30 09:20:54 localhost pluto[19001]: "babylon3-do-babylon1" #3:<br>responding to Main Mode<br>Aug 30 09:20:54 localhost pluto[19001]: "babylon3-do-babylon1" #3:
<br>transition from state STATE_MAIN_R0 to state STATE_MAIN_R1<br>Aug 30 09:20:54 localhost pluto[19001]: "babylon3-do-babylon1" #3:<br>STATE_MAIN_R1: sent MR1, expecting MI2<br>Aug 30 09:20:54 localhost pluto[19001]: "babylon3-do-babylon1" #2:
<br>ERROR: asynchronous network error report on eth1 (sport=500) for message<br>to <a href="http://192.168.0.5"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.5</a> port 1, complainant <a href="http://192.168.0.4"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.4</a>: No route to host [errno<br>
113, origin ICMP type 3 code 1 (not authenticated)]<br>Aug 30 09:20:54 localhost pluto[19001]: "babylon3-do-babylon1" #3:<br>ERROR: asynchronous network error report on eth1 (sport=500) for message<br>to <a href="http://192.168.0.5"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font>
192.168.0.5</a> port 1, complainant <a href="http://192.168.0.4"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 192.168.0.4</a>: No route to host [errno<br>113, origin ICMP type 3 code 1 (not authenticated)]<br><br>Can anybody help me, I would really appreciate any help guys!
<br></pre>