<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman,new york,times,serif;font-size:12pt"><div style="font-family: times new roman,new york,times,serif; font-size: 12pt;">Hi Jacco - Wanted to get back to you. Anyway, I thought I would swap out the DIR-130 with a Linksys BEFVP41. It turns out that the problem appears to be with the DIR-130. I was able to establish some connectivity using the Linksys (using basically the same configuration on the Openswan server).<br><br>It works...99%. Rrom Linksys side I can ping the Openswan server on it's local network. From Openswan, I can only ping the router itself but nothing else behind it.<br><br>Thanks again for all the help you have provided.<br><br><br><div style="font-family: times new roman,new york,times,serif; font-size: 12pt;">----- Original Message ----<br>From: BUI18 <lbui18@yahoo.com><br>To:
users@openswan.org<br>Sent: Tuesday, April 8, 2008 3:14:05 PM<br>Subject: Re: [Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"<br><br>
<div style="font-family: times new roman,new york,times,serif; font-size: 12pt;"><div style="font-size: 12pt; font-family: times new roman,new york,times,serif;">Hi Jacco - Thanks for getting back to me.</div>
<div style="font-size: 12pt; font-family: times new roman,new york,times,serif;"> </div>
<div style="font-size: 12pt; font-family: times new roman,new york,times,serif;">The only thing I can set on the router is host name. I can set the host id on the router and then set the rightid on Openswan. Is that what you mean?</div>
<div style="font-size: 12pt; font-family: times new roman,new york,times,serif;"> </div>
<div style="font-size: 12pt; font-family: times new roman,new york,times,serif;"><br><br> </div>
<div style="font-size: 12pt; font-family: times new roman,new york,times,serif;">----- Original Message ----<br>From: Jacco de Leeuw <jacco2@dds.nl><br>To: users@openswan.org<br>Sent: Tuesday, April 8, 2008 2:18:55 PM<br>Subject: Re: [Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"<br><br><br>BUI18 wrote:<br><br>> *Apr 8 12:08:56Debug InformationIPSec "conn_IPSec_Tunnel" #47: we<br>> require peer to have ID '66.27.a.b', but peer declares '192.168.23.23'*<br><br>The problem is, PSKs and NAT don't really mix well. I don't know, can<br>you get away with leftid=@66.27.a.b on Openswan?<br><br>Since the Dlink appears to be running FreeS/WAN, is there an option in<br>the GUI to add something which ends up as rightid=@someidentifier in its<br>config? Then you add leftid=@someidentifier on Openswan as well.<br><br>Or does the Dlink support certificates?<br><br>Jacco<br>--
<br>Jacco de Leeuw mailto:<a rel="nofollow" ymailto="mailto:jacco2@dds.nl" target="_blank" href="mailto:jacco2@dds.nl">jacco2@dds.nl</a><br>Zaandam, The Netherlands <a rel="nofollow" target="_blank" href="http://www.jacco2.dds.nl/">http://www.jacco2.dds.nl</a><br>_______________________________________________<br><a rel="nofollow" ymailto="mailto:Users@openswan.org" target="_blank" href="mailto:Users@openswan.org">Users@openswan.org</a><br><a rel="nofollow" target="_blank" href="http://lists.openswan.org/mailman/listinfo/users">http://lists.openswan.org/mailman/listinfo/users</a><br>Building and Integrating Virtual Private Networks with Openswan: <br><a rel="nofollow" target="_blank"
href="http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155">http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155</a><br></div>
<div style="font-size: 12pt; font-family: times new roman,new york,times,serif;"><br></div></div><br>
<hr size="1">You rock. That's why Blockbuster's offering you <a rel="nofollow" target="_blank" href="http://us.rd.yahoo.com/evt=47523/*http://tc.deals.yahoo.com/tc/blockbuster/text5.com">one month of Blockbuster Total Access</a>, No Cost.</div><br></div></div><br>__________________________________________________<br>Do You Yahoo!?<br>Tired of spam? Yahoo! Mail has the best spam protection around <br>http://mail.yahoo.com </body></html>