[Openswan Users] help for a new user

Joep Gommers jgommers at gfo.nl
Mon May 17 11:36:43 CEST 2004


Could you provide us with some more logging. e.g. /var/log/messages / 
/var/log/secure... ?
Maybe put an # ipsec barf online.

Let us now!!

Cheers,
Joep Gommers


Antonio Basiaco wrote:

>Hi,
>
>in my intranet i have one pc with ip 192.168.0.6 and another pc that is a 
>gateway with 2 Network Interface Card with the follow addrressesi 
>192.168.0.20 e 192.168.23.254.
>
>I would like doing a connection in tunnel mode between these 2 pcs with 
>openswan but i amnot able to configure /etc/ipsec/ipsec.conf files on my 2 
>computers.
>
>In pc with 192.168.0.6. i have the follow 
>configuration :--------------------------------------
>
>version 2.0 # conforms to second version of ipsec.conf specification
>
># basic configuration
>config setup
># Debug-logging controls: "none" for (almost) none, "all" for lots.
># klipsdebug=all
># plutodebug=dns
>
>
># Add connections here.
>
># sample RoadWarrior connection
>conn road
>left = 192.168.0.6
>leftrsasigkey = 0sAQO8l97fPXqa9y5s4P+2GNfUYcx/ZUYaHZ5eMGWx11gsbv/UsKq$
>right = 192.168.0.20
>rightrsasigkey = 0sAQNpY6tenSDF1UNYIKPm1Yik+ZGc9S28nZPkzo05JV/frSLqbS$
>auto = add
>---------------------------------------------------------------------------------------------------------
>
>While on the gateway i have the follow configuration:
>
>
>version 2.0 # conforms to second version of ipsec.conf specification
>
># basic configuration
>config setup
># Debug-logging controls: "none" for (almost) none, "all" for lots.
># klipsdebug=all
># plutodebug=dns
>
>
># Add connections here.
>
># sample RoadWarrior connection
>conn road
>left = 192.168.0.20
>leftrsasigkey = 0sAQNpY6tenSDF1UNYIKPm1Yik+ZGc9S28nZPkzo05JV/frSLqbS$
>right = 192.168.0.6
>rightsasigkey = 0sAQO8l97fPXqa9y5s4P+2GNfUYcx/ZUYaHZ5eMGWx11gsbv/UsKq
>auto = add
>---------------------------------------------------------------------------------------------------------
>
>Doing /etc/init.d/ipsec start the process starts well.
>But when i do :
>ipsec auto --up road
>
>i obtain:
>
>104 "road" #1: STATE_MAIN_I1: initiate
>010 "road" #1: STATE_MAIN_I1: retransmission; will wait 20s for response
>010 "road" #1: STATE_MAIN_l1: retransmission; will wait 40s for response
>.....
>
>Sameone can help me?
>
>Thanks a lot
>  
>




More information about the Users mailing list