<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:st1="urn:schemas-microsoft-com:office:smarttags" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 11 (filtered medium)">
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="PostalCode"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="State"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="Street"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="address"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="City"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="place"/>
<!--[if !mso]>
<style>
st1\:*{behavior:url(#default#ieooui) }
</style>
<![endif]-->
<style>
<!--
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:Arial;
color:windowtext;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
{page:Section1;}
-->
</style>
</head>
<body lang=EN-US link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Hello,<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I am trying to get a Fedora Core 4 client machine to connect
to a Win 2k3 server with Openswan 2.4.4. The initial main mode connection seems
to be ok but I am getting the following errors during quick mode negotiation:<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><br>
Nov 3 09:35:34 localhost pluto[23675]: packet from 192.168.126.137:500:
ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:34 localhost pluto[23675]: packet from
192.168.126.137:500: ignoring Vendor ID payload [FRAGMENTATION]<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:34 localhost pluto[23675]: packet from
192.168.126.137:500: received Vendor ID payload
[draft-ietf-ipsec-nat-t-ike-02_n] method set to=106 <o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:34 localhost pluto[23675]: packet from
192.168.126.137:500: ignoring Vendor ID payload [Vid-Initial-Contact]<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:34 localhost pluto[23675]:
"L2TP-PSK" #1: responding to Main Mode<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:34 localhost pluto[23675]:
"L2TP-PSK" #1: transition from state STATE_MAIN_R0 to state
STATE_MAIN_R1<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:34 localhost pluto[23675]: "L2TP-PSK"
#1: STATE_MAIN_R1: sent MR1, expecting MI2<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:37 localhost pluto[23675]:
"L2TP-PSK" #1: NAT-Traversal: Result using
draft-ietf-ipsec-nat-t-ike-02/03: no NAT detected<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:37 localhost pluto[23675]:
"L2TP-PSK" #1: transition from state STATE_MAIN_R1 to state
STATE_MAIN_R2<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:37 localhost pluto[23675]:
"L2TP-PSK" #1: STATE_MAIN_R2: sent MR2, expecting MI3<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:37 localhost pluto[23675]:
"L2TP-PSK" #1: Main mode peer ID is ID_IPV4_ADDR: '192.168.126.137'<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:37 localhost pluto[23675]:
"L2TP-PSK" #1: I did not send a certificate because I do not have
one.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:37 localhost pluto[23675]:
"L2TP-PSK" #1: transition from state STATE_MAIN_R2 to state
STATE_MAIN_R3<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:37 localhost pluto[23675]: "L2TP-PSK"
#1: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY
cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp1024}<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:38 localhost pluto[23675]:
"L2TP-PSK" #1: cannot respond to IPsec SA request because no
connection is known for 192.168.131.128...192.168.126.137<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:38 localhost pluto[23675]:
"L2TP-PSK" #1: sending encrypted notification INVALID_ID_INFORMATION
to 192.168.126.137:500<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:43 localhost pluto[23675]:
"L2TP-PSK" #1: Quick Mode I1 message is unacceptable because it uses
a previously used Message ID 0x58e93fd2 (perhaps this is a duplicated packet)<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:43 localhost pluto[23675]:
"L2TP-PSK" #1: sending encrypted notification INVALID_MESSAGE_ID to
192.168.126.137:500<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Nov 3 09:35:49 localhost pluto[23675]:
"L2TP-PSK" #1: Quick Mode I1 message is unacceptable because it uses
a previously used Message ID 0x58e93fd2 (perhaps this is a duplicated packet)<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>(last 2 messages repeated 8 times)<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Here’s the /etc/ipsec.d/L2TP-PSK.conf<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>conn L2TP-PSK<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> authby=secret<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> pfs=no<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> rekey=no<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> keyingtries=3<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> type=transport<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> esp=3des-sha1<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> #
Local Linux machine that connects as client<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> left=%defaultroute<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> leftprotoport=17/1701<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> #
The remote server<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> right=192.168.126.137<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> rightprotoport=17/1701<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> #
Change 'ignore' to 'add' to enable the configuration for this user.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'> auto=add<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>and the ipsec.secrets<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>192.168.131.128 192.168.126.137: PSK
"presharedkey"<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>192.168.126.137 192.168.131.128: PSK
"presharedkey"<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>If anyone has seen this before or know what may be going on
I would very much appreciate the help.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Thanks!<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><strong><b><font size=3 color="#003369" face=Arial><span
style='font-size:12.0pt;font-family:Arial;color:#003369'>Zack Bartel</span></font></b></strong><o:p></o:p></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Software Engineer</span></font><o:p></o:p></p>
<p class=MsoNormal><font size=3 face="Times New Roman"><span style='font-size:
12.0pt'> <o:p></o:p></span></font></p>
<p class=MsoNormal><strong><b><font size=3 color="#003369" face=Arial><span
style='font-size:12.0pt;font-family:Arial;color:#003369'>Tectura</span></font></b></strong><o:p></o:p></p>
<div u1:shape="_x0000_s1026">
<div>
<p class=MsoNormal><st1:Street w:st="on"><st1:address w:st="on"><font size=2
color=black face=Arial><span style='font-size:10.0pt;font-family:Arial;
color:black'>14205 SE 36th Street</span></font></st1:address></st1:Street><font
size=2 color=black><span style='font-size:10.0pt;color:black'><br>
</span></font><st1:place w:st="on"><st1:City w:st="on"><font size=2
color=black face=Arial><span style='font-size:10.0pt;font-family:Arial;
color:black'>Bellevue</span></font></st1:City><font size=2 color=black
face=Arial><span style='font-size:10.0pt;font-family:Arial;color:black'>, <st1:State
w:st="on">WA</st1:State> <st1:PostalCode w:st="on">98006</st1:PostalCode></span></font></st1:place><o:p></o:p></p>
</div>
<div>
<p class=MsoNormal><font size=2 color=black face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:black'>Tel: 425-957-4237</span></font><font
size=2 color=black><span style='font-size:10.0pt;color:black'><br>
</span></font><st1:City w:st="on"><st1:place w:st="on"><font size=2
color=black face=Arial><span style='font-size:10.0pt;font-family:Arial;
color:black'>Mobile</span></font></st1:place></st1:City><font size=2
color=black face=Arial><span style='font-size:10.0pt;font-family:Arial;
color:black'>:</span></font><font size=2 color=black><span style='font-size:
10.0pt;color:black'> </span></font><font size=2 color=black face=Arial><span
style='font-size:10.0pt;font-family:Arial;color:black'>503-320-1884<br>
E-mail:</span></font><font size=2 color=black><span style='font-size:10.0pt;
color:black'> <a href="mailto:zack.bartel@tectura.com"><font face=Arial><span
style='font-family:Arial'>zack.bartel@tectura.com</span></font></a></span></font><font
size=2 color=black face=Arial><span style='font-size:10.0pt;font-family:Arial;
color:black'> </span></font><o:p></o:p></p>
</div>
<div>
<p class=MsoNormal><font size=2 color=black face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:black'>Web:</span></font><font size=2
color=black><span style='font-size:10.0pt;color:black'> </span></font><font
size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'><p:onmouseclick hyperlinktype="url" href="http://www.tectura.com/"></p:onmouseclick> </span></font><font
size=2><span style='font-size:10.0pt'><a href="http://www.tectura.com/"
target="_parent"><font color="#008b86" face=Arial><span style='font-family:
Arial;color:#008B86'>www.tectura.com</span></font></a></span></font><font
size=2 color=black face=Arial><span style='font-size:10.0pt;font-family:Arial;
color:black'> </span></font><o:p></o:p></p>
</div>
</div>
<div>
<p class=MsoNormal><font size=1 face=Arial><span style='font-size:8.0pt;
font-family:Arial'>This e-mail (and attachments, if any) is confidential and
access by anyone other than the addressee(s) is unauthorized. If you are
not the intended recipient, any disclosure, copying, forwarding, or
distribution of this e-mail is prohibited and immediate deletion should be
effected. We would appreciate your notifying the sender immediately
should you become aware of any instances of such occurrence.</span></font><font
face=Arial><span style='font-family:Arial'> </span></font><o:p></o:p></p>
</div>
<p class=MsoNormal><font size=3 face="Times New Roman"><span style='font-size:
12.0pt'><o:p> </o:p></span></font></p>
</div>
</body>
</html>