<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD><TITLE>IPSec Install files</TITLE>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.2900.3132" name=GENERATOR></HEAD>
<BODY>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff size=2>The
following is the nmessage output of the command</FONT></SPAN></DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff size=2>ipsec
auto --up net-to-net </FONT></SPAN></DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff size=2>It
appears ISKAMP is established but i do not see message for ESP
stablished.</FONT></SPAN></DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff size=2>On my
tcpdump also i see message packets with isakmp and not ESP as said in the
documentation. DOes this mean i have established IPSec connection properly por
something is missing....</FONT></SPAN></DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff size=2>Can
anyone point what could be the problem..</FONT></SPAN></DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff
size=2>sh-3.1# ipsec auto --up net-to-net<BR>pluto[2699]: "net-to-net" #1:
initiating Main Mode<BR>104 "net-to-net" #1: STATE_MAIN_I1:
initiate<BR>pluto[2699]: "net-to-net" #1: received Vendor ID payload [Openswan
(this version<BR>) 2.4.9 PLUTO_SENDS_VENDORID
PLUTO_USES_KEYRR]<BR>pluto[2699]: "net-to-net" #1: received Vendor ID payload
[Dead Peer Detection]<BR>003 "net-to-net" #1: received Vendor ID payload
[Openswan (this version) 2.4.9<BR>PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]<BR>003
"net-to-net" #1: received Vendor ID payload [Dead Peer
Detection]<BR>pluto[2699]: "net-to-net" #1: transition from state STATE_MAIN_I1
to state STATE<BR>_MAIN_I2<BR>pluto[2699]: "net-to-net" #1: STATE_MAIN_I2: sent
MI2, expecting MR2<BR>106 "net-to-net" #1: STATE_MAIN_I2: sent MI2, expecting
MR2<BR>pluto[2699]: "net-to-net" #1: I did not send a certificate because I do
not have<BR> one.<BR>pluto[2699]: "net-to-net" #1: transition from state
STATE_MAIN_I2 to state STATE<BR>_MAIN_I3<BR>pluto[2699]: "net-to-net" #1:
STATE_MAIN_I3: sent MI3, expecting MR3<BR>108 "net-to-net" #1: STATE_MAIN_I3:
sent MI3, expecting MR3<BR>pluto[2699]: "net-to-net" #1: Main mode peer ID is
ID_FQDN: <A href="mailto:'@right.com'">'@right.com'</A><BR>pluto[2699]:
"net-to-net" #1: transition from state STATE_MAIN_I3 to state
STATE<BR>_MAIN_I4<BR>pluto[2699]: "net-to-net" #1: STATE_MAIN_I4: ISAKMP SA
established {auth=OAKLEY_<BR>RSA_SIG cipher=oakley_3des_cbc_192 prf=oakley_md5
group=modp1536}<BR>pluto[2699]: "net-to-net" #2: initiating Quick Mode
RSASIG+ENCRYPT+TUNNEL+PFS+UP<BR> {using isakmp#1}<BR>004 "net-to-net" #1:
STATE_MAIN_I4: ISAKMP SA established {auth=OAKLEY_RSA_SIG
c<BR>ipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}<BR>117
"net-to-net" #2: STATE_QUICK_I1: initiate<BR>pluto[2699]: "net-to-net" #2:
ERROR: netlink response for Add SA <A
href="mailto:esp.552dee6a@19">esp.552dee6a@19</A><BR>2.168.1.102 included errno
38: Function not implemented<BR>003 "net-to-net" #2: ERROR: netlink response for
Add SA <A
href="mailto:esp.552dee6a@192.168.1.1">esp.552dee6a@192.168.1.1</A><BR>02
included errno 38: Function not implemented<BR>032 "net-to-net" #2:
STATE_QUICK_I1: internal error<BR>pluto[2699]: packet from 192.168.1.101:500:
Quick Mode message is for a non-exis<BR>tent (expired?) ISAKMP SA<BR>010
"net-to-net" #2: STATE_QUICK_I1: retransmission; will wait 20s for
response<BR>pluto[2699]: "net-to-net" #1: Informational Exchange message must be
encrypted<BR>pluto[2699]: "net-to-net" #2: discarding duplicate packet; already
STATE_QUICK_I<BR>1<BR>003 "net-to-net" #2: discarding duplicate packet; already
STATE_QUICK_I1<BR>pluto[2699]: packet from 192.168.1.101:500: Quick Mode message
is for a non-exis<BR>tent (expired?) ISAKMP SA</FONT></SPAN></DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=768323922-07112007><FONT face=Arial color=#0000ff
size=2>Srinivas</FONT></SPAN></DIV></BODY></HTML>