[Openswan Users] cannot install eroute -- it is in use for

Rajesh Ghanekar rajeshsg2003 at yahoo.com
Thu Apr 1 07:51:00 CEST 2004 

Hi,

   I am using super-freeswan-1.99.7.3 with Windows 98
(Microsoft IPSec/L2TP Adapter). My setup is as
follows:


 linux-box --- Internet --- NAT Router --- (5 Windows
                                          98 machines)

  So I am connecting from my Windows 98 machines with
Microsoft IPSec/L2TP Adapter. The problem is i can
only connect one windows machine  at a time. So if one
is connected the other machine cannot connect. As soon
as i disconnect the first one, second gets connected.
Is this a limitation of NAT-T or some thing with
Microsoft IPsec/L2TP adapter. The error messages are
as follows:

------------- /var/log/secure -----------------------

Apr  1 18:19:52 netserv pluto[14680]: "duru_1"[1]
61.11.10.103:10970 #3: deleting connection
"pobcbomserver_1" instance with peer 61.11.10.103

Apr  1 18:19:52 netserv pluto[14680]: | NAT-T: new
mapping 61.11.10.103:10970/10972)

Apr  1 18:19:52 netserv pluto[14680]: "duru_1"[1]
61.11.10.103:10972 #3: sent MR3, ISAKMP SA established

Apr  1 18:19:54 netserv pluto[14680]: "duru_1"[1]
61.11.10.103:10972 #4: responding to Quick Mode

Apr  1 18:19:54 netserv pluto[14680]: "duru_1"[1]
61.11.10.103:10972 #4: cannot install eroute -- it is
in use for "naushad_1"[1] 61.11.10.103:10918 #2

Apr  1 18:19:59 netserv pluto[14680]: "duru_1"[1]
61.11.10.103:10972 #3: Quick Mode I1 message is
unacceptable because it uses a previously used Message
ID 0x6116a970 (perhaps this is a duplicated packet)

Apr  1 18:19:59 netserv pluto[14680]: "duru_1"[1]
61.11.10.103:10972 #3: sending encrypted notification
INVALID_MESSAGE_ID to 61.11.10.103:10972

Apr  1 18:20:07 netserv pluto[14680]: packet from
61.11.10.103:10970: ignoring Vendor ID payload
[4048b7d56ebce885...]

Apr  1 18:20:07 netserv pluto[14680]: packet from
61.11.10.103:10970: received Vendor ID payload
[draft-ietf-ipsec-nat-t-ike-00]

Apr  1 18:20:07 netserv pluto[14680]: packet from
61.11.10.103:10970: received Vendor ID payload
[draft-ietf-ipsec-nat-t-ike-02_n]

Apr  1 18:20:07 netserv pluto[14680]:
"pobcbomserver_1"[3] 61.11.10.103:10970 #5: responding
to Main Mode from unknown peer 61.11.10.103:10970

-----------------------------------------------------

Plz see that error says -
cannot install eroute -- it is in use for
"naushad_1"[1] 61.11.10.103:10918 #2 

How can i get rid of this message so that i can use
all 5 windows machines with Microsoft IPSec/L2TP
adapter?
Will newer versions of Freeswan/Openswan will solve
the problem? Thanks.



- Rajesh

__________________________________
Do you Yahoo!?
Yahoo! Small Business $15K Web Design Giveaway 
http://promotions.yahoo.com/design_giveaway/

More information about the Users mailing list