<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.6000.16525" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>A cannot start the connection, because B's IP is not
known/dynamic.</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>B must start the connection.</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007></SPAN></FONT> </DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>Change A's ipsec.conf auto=add to reflect
this.</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>This will solve A's error, it will answer but not
start.</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007></SPAN></FONT> </DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>Also your B's rightid does not match your A's rightid,
this will cause problems, make them the same.</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007></SPAN></FONT> </DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>B is not getting a good internet connection setup, it
can't find default route.</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>Before you try to start openswan on B, make sure the
internet connection DSL PPPoE is up and running.</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>ifconfig should show an interface for the internet,
probably ppp0.</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>route should show a default
route:</SPAN></FONT></DIV>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff size=2><SPAN
class=885380515-28082007>ie) 0.0.0.0/0 gw ?.?.?.?</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2></FONT> </DIV>
<DIV align=left><FONT face=Arial size=2>Peter McGill</FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2></FONT> </DIV><FONT face=Arial
size=2></FONT><FONT face=Arial size=2></FONT><FONT face=Arial
size=2></FONT><FONT face=Arial size=2></FONT><FONT face=Arial
size=2></FONT><FONT face=Arial size=2></FONT><FONT face=Arial
size=2></FONT><FONT face=Arial size=2></FONT><BR>
<BLOCKQUOTE dir=ltr
style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #0000ff 2px solid; MARGIN-RIGHT: 0px">
<DIV class=OutlookMessageHeader lang=en-us dir=ltr align=left>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> users-bounces@www.openswan.org
[mailto:users-bounces@www.openswan.org] <B>On Behalf Of </B>Toni
Cosma<BR><B>Sent:</B> August 28, 2007 10:22 AM<BR><B>To:</B>
users@www.openswan.org<BR><B>Subject:</B> [Openswan Users] roadwarrior over
pppoe<BR></FONT><BR></DIV>
<DIV></DIV>
<DIV><FONT face=Arial size=2><STRONG>Hi all,</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2><STRONG></STRONG></FONT> </DIV>
<DIV><FONT face=Arial size=2><STRONG>I try to make a roadwarrior
tunnel</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2><STRONG>from <FONT color=#ff0000>A</FONT> to
<FONT color=#0000ff>B</FONT>.</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2><STRONG></STRONG></FONT> </DIV>
<DIV><FONT face=Arial color=#ff0000 size=2><STRONG>A has a static
IP.</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2><STRONG><FONT color=#0000ff>B has a DSL
connection PPP-OE</FONT>.</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2><STRONG></STRONG></FONT> </DIV>
<DIV><FONT face=Arial color=#ff0000 size=2><STRONG>A ipsec.conf
is:</STRONG></FONT></DIV>
<DIV><FONT face=Arial color=#ff0000
size=2><STRONG></STRONG></FONT> </DIV>
<DIV><FONT face=Arial color=#ff0000 size=2><STRONG>conn
A-B_rw<BR> left=xxx.yyy.zzz.vvvv</STRONG></FONT></DIV>
<DIV><FONT face=Arial color=#ff0000 size=2><STRONG>
leftnexthop=xxx.yyy.zzz.aaa<BR>
leftsubnet=192.168.sss.0/24</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2><FONT color=#ff0000><STRONG>
</STRONG></FONT><A href="mailto:leftid=@A-vpn.atp-exodus.ro"><FONT
color=#ff0000><STRONG>leftid=@A-vpn.atp-exodus.ro</STRONG></FONT></A></FONT></DIV>
<DIV><FONT face=Arial size=2><FONT color=#ff0000><STRONG>
right=%any<BR> </STRONG></FONT><A
href="mailto:rightid=@B-vpn.atp-exodus.ro"><FONT
color=#ff0000><STRONG>rightid=@B-vpn.atp-exodus.ro</STRONG></FONT></A><BR><FONT
color=#ff0000><STRONG>
rightsubnet=192.168.ppp.0/24<BR>
type=tunnel<BR> auth=esp<BR>
authby=rsasig<BR>
leftrsasigkey=0sA0....
</STRONG></FONT></FONT></DIV>
<DIV><FONT face=Arial color=#ff0000 size=2><STRONG>
rightrsasigkey=0sAq... </STRONG></FONT></DIV>
<DIV><FONT face=Arial color=#ff0000 size=2><STRONG>
auto=start</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2><BR><FONT color=#0000ff><STRONG>B ipsec.conf
is:</STRONG></FONT></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff
size=2><STRONG> </STRONG></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff
size=2><STRONG>conn A-B_rw</STRONG></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><STRONG>
left=xxx.yyy.zzz.vvvv<BR>
leftnexthop=xxx.yyy.zzz.aaa<BR>
leftsubnet=192.168.sss.0/24</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2>
<DIV><FONT face=Arial size=2><FONT color=#0000ff><STRONG>
</STRONG></FONT><A
href="mailto:leftid=@A-vpn.atp-exodus.ro"><STRONG>leftid=@A-vpn.atp-exodus.ro</STRONG></A></FONT></DIV><FONT
color=#0000ff><STRONG>
right=%defaultroute<BR> </STRONG></FONT><A
href="mailto:rightid=@cluj-vpn.atp-exodus.ro"><STRONG>rightid=@cluj-vpn.atp-exodus.ro</STRONG></A><BR><FONT
color=#0000ff><STRONG>
rightsubnet=192.168.ppp.0/24<BR>
type=tunnel<BR> auth=esp<BR>
authby=rsasig<BR>
leftrsasigkey=0sA0....
</STRONG></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><STRONG>
rightrsasigkey=0sAq... </STRONG></FONT></DIV>
<DIV><FONT color=#0000ff><STRONG>
auto=start<BR></STRONG></FONT></DIV></FONT>
<DIV><FONT face=Arial size=2><STRONG></STRONG></FONT> </DIV>
<DIV><FONT face=Arial color=#0000ff size=2><STRONG>after "ipsec start" B
syslog is:</STRONG></FONT></DIV>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<DIV><FONT face=Arial color=#0000ff size=2><STRONG>Aug 28 17:06:21 B
ipsec__plutorun: ipsec_auto: fatal error in "A-B_rw": %defaultroute
requested but not known<BR>Aug 28 17:06:21 B ipsec__plutorun: 021 no
connection named "A-B_rw"<BR>Aug 28 17:06:21 B ipsec__plutorun:
...could not route conn "A-B_rw"<BR>Aug 28 17:06:21 B ipsec__plutorun:
021 no connection named "A-B_rw"<BR>Aug 28 17:06:21 B ipsec__plutorun:
...could not start conn "A-B_rw"</STRONG></FONT></DIV></BLOCKQUOTE>
<DIV dir=ltr><FONT face=Arial color=#ff0000 size=2><STRONG>and A error message
after: ipsec auto --up A-B_rw is:</STRONG></FONT></DIV>
<DIV dir=ltr><FONT face=Arial color=#ff0000 size=2><STRONG>
"A-B_rw": cannot initiate connection
without knowing peer IP address (kind=CK_TEMPLATE)</STRONG></FONT></DIV>
<DIV dir=ltr><FONT face=Arial color=#ff0000
size=2><STRONG></STRONG></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2><STRONG>Thx for
help.</STRONG></FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2><STRONG></STRONG></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2><STRONG>Bye</STRONG></FONT></DIV>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<DIV><FONT face=Arial size=2><STRONG></STRONG></FONT> </DIV></BLOCKQUOTE>
<DIV dir=ltr><FONT face=Arial
size=2><STRONG></STRONG></FONT> </DIV></BLOCKQUOTE></BODY></HTML>