<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2800.1617" name=GENERATOR></HEAD>
<BODY>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>Hello all,
</FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>we are trying to
connect openswan server to CISCO Pix with PSK. When i try to establish the
connect it appears the following message:</FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>$ipsec auto --up
pix-barcelona<BR>104 "pix-barcelona" #1: STATE_MAIN_I1: initiate<BR>003
"pix-barcelona" #1: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03]
method set to=108<BR>003 "pix-barcelona" #1: received Vendor ID payload
[draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but already using method 108<BR>106
"pix-barcelona" #1: STATE_MAIN_I2: sent MI2, expecting MR2<BR>003
"pix-barcelona" #1: received Vendor ID payload [XAUTH]<BR>003 "pix-barcelona"
#1: received Vendor ID payload [Dead Peer Detection]<BR>003 "pix-barcelona" #1:
received Vendor ID payload [Cisco-Unity]<BR>003 "pix-barcelona" #1: ignoring
unknown Vendor ID payload [f8dab7b37106268c89e5da42907649c5]<BR>003
"pix-barcelona" #1: NAT-Traversal: Result using
draft-ietf-ipsec-nat-t-ike-02/03: peer is NATed<BR>108 "pix-barcelona" #1:
STATE_MAIN_I3: sent MI3, expecting MR3<BR>003 "pix-barcelona" #1: we require
peer to have ID '80.25.172.194', but peer declares '192.168.0.2'<BR>218
"pix-barcelona" #1: STATE_MAIN_I3:
INVALID_ID_INFORMATION<BR></FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>the ipsec.conf file
is:</FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>conn
pix-barcelona<BR>
type=tunnel<BR>
authby=secret<BR>
left=81.93.214.114<BR>
leftsourceip=10.105.241.253<BR>
leftsubnet=10.105.0.0/16<BR>
right=80.25.172.194<BR>
rightsourceip=192.168.0.2<BR>
rightsubnet=10.105.228.0/22<BR>
esp=3des-md5<BR>
keyexchange=ike<BR>
pfs=yes<BR>
auto=add<BR>
spi=0x0</FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>and the
ipsec.secrets:</FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>81.93.214.114
192.168.0.2: PSK "xxxxxxxxxxxxxxxxxxxx"<BR>81.93.214.114 80.25.172.194: PSK
"xxxxxxxxxxxxxxxxxx"</FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>Can anybody help
us?</FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>thanks in
advanced.</FONT></SPAN></DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=704322812-18122008><FONT face=Arial size=2>best
regards</FONT></SPAN><SPAN class=704322812-18122008><FONT face=Arial
size=2></DIV>
<DIV><BR></DIV></FONT></SPAN>
<P><FONT size=2><FONT face=Tahoma>Alfonso Viso Puerta<BR>IT Department<BR>Self
Trade Bank by Boursorama<BR>Tel: +34 91 789 40 46</FONT><SPAN lang=ES
style="FONT-SIZE: 7.5pt; FONT-FAMILY: 'Arial Narrow'; mso-ansi-language: ES"><FONT
size=2><SPAN lang=ES
style="FONT-SIZE: 7.5pt; FONT-FAMILY: 'Arial Narrow'; mso-ansi-language: ES"><FONT
size=2><SPAN lang=ES
style="FONT-SIZE: 7.5pt; FONT-FAMILY: 'Arial Narrow'; mso-ansi-language: ES"><FONT
size=2></P>
<DIV
class=Section1></FONT></SPAN></FONT></SPAN></FONT></SPAN></FONT> </DIV><hr/> <p> Ce message contient des informations confidentielles ou appartenant à Boursorama et est établi à l'intention exclusive de ses destinataires. Toute divulgation, utilisation, diffusion ou reproduction (totale ou partielle) de ce message, ou des informations qu'il contient, doit être préalablement autorisée. Tout message électronique est susceptible d'altération et son intégrité ne peut être assurée.<br/> Boursorama décline toute responsabilité au titre de ce message s'il a été modifié ou falsifié. Si vous n'êtes pas destinataire de ce message, merci de le détruire immédiatement et d'avertir l'expéditeur de l'erreur de distribution et de la destruction du message. </p> <hr/> <p> This e-mail contains confidential information or information belonging to Boursorama and is intended solely for the addressees. The unauthorised disclosure, use, dissemination or copying (either whole or partial) of this e-mail, or any information it contains, is prohibited. E-mails are susceptible to alteration and their integrity cannot be guaranteed. Boursorama shall not be liable for this e-mail if modified or falsified. If you are not the intended recipient of this e-mail, please delete it immediately from your system and notify the sender of the wrong delivery and the mail deletion. </p> <hr/>
</body>
</HTML>