Hi<br><br>Sorry, like an idiot I didn't see this <br><br>#You may put your configuration (.conf) file in the "/etc/ipsec.d/" and <b>uncomment this.</b><br>#include /etc/ipsec.d/*.conf<br><br>It is working now.<br>
<br>Thanks<br><br><div class="gmail_quote">On Fri, Jan 7, 2011 at 10:22 AM, Tyller D <span dir="ltr"><<a href="mailto:tyllerd@gmail.com">tyllerd@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
Hi<br><br>I'm having an issue trying to setup a vpn between my linux box running Openswan and a load balancing appliance called Hotbrick.<br><br>Here is some info on my setup<br><br>OpenSwan Hotbrick<br>
LocalIP: 192.168.4.202 LocalIP: 192.168.1.1<br>PublicIP: 111.111.111.111 PublicIP: 222.222.222.222<br><br><br>[root@localhost ipsec.d]# cat /etc/ipsec.d/vpn1.conf <br>
config setup<br> interfaces="ipsec0=eth0"<br> nat_traversal=yes<br><br>conn mynatconn<br> type=tunnel<br> authby=secret<br> keyexchange=ike1<br> auto=start<br> pfs=no<br> ike=3des-md5-modp1024<br>
esp=3des-md5<br> auth=esp<br> aggrmode=yes<br> left=192.168.4.202<br> leftid=111.111.111.111<br> leftsubnet=<a href="http://192.168.4.0/24" target="_blank">192.168.4.0/24</a><br> leftnexthop=%defaultroute<br>
right=222.222.222.222<br> rightsubnet=<a href="http://172.20.11.0/24" target="_blank">172.20.11.0/24</a><br> rightnexthop=%defaultroute<br> keylife=3600<br> ikelifetime=28800<br><br><br><br>
[root@localhost ipsec.d]# cat /etc/ipsec.d/vpn1.secrets <br>
192.168.4.202 222.222.222.222 : PSK "secret"<br><br><br>Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: received Vendor ID payload [RFC 3947] method set to=109 <br>
Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: ignoring unknown Vendor ID payload [8f8d83826d246b6fc7a8a6a428c11de8]<br>Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: ignoring unknown Vendor ID payload [439b59f8ba676c4c7737ae22eab8f582]<br>
Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: ignoring unknown Vendor ID payload [4d1e0e136deafa34c4f3ea9f02ec7285]<br>Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: ignoring unknown Vendor ID payload [80d0bb3def54565ee84645d4c85ce3ee]<br>
Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: ignoring unknown Vendor ID payload [9909b64eed937c6573de52ace952fa6b]<br>Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03] meth=108, but already using method 109<br>
Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already using method 109<br>
Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already using method 109<br>
Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: ignoring unknown Vendor ID payload [16f6ca16e4a4066d83821a0f0aeaa862]<br>Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]<br>
Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>: initial Aggressive Mode message from 222.222.222.222 but no (wildcard) connection has been configured with policy=PSK+AGGRESSIVE<br>
<br><br>I have been googling for the last two days and I can't find anything. Do any of you know what I keep getting that last error ?<br><br>Jan 7 03:18:40 localhost pluto[18449]: packet from <a href="http://222.222.222.222:500" target="_blank">222.222.222.222:500</a>:
initial Aggressive Mode message from 222.222.222.222 but no (wildcard)
connection has been configured with policy=PSK+AGGRESSIVE<br><br>Any help would be great.<br><br>Thanks<br>
</blockquote></div><br>