[Openswan Users] Almost connected from WinXP...

Ken Bantoft ken at xelerance.com
Sat May 29 14:29:37 CEST 2004 

On Fri, 28 May 2004, José Julio Hernández Fernández wrote:

> 
> Hi all,
> 
> Thanks Paul Wouters and Ken Bantoft I'm running Openswan 2.1.2 on a SuSE
> 9.0 (kernel 2.6.6):

> May 28 15:52:23 localhost pluto[14320]: "test"[1] a.b.c.d #1: responding
> to Main Mode from unknown peer a.b.c.d
> May 28 15:52:23 localhost pluto[14320]: "test"[1] a.b.c.d #1: only
> OAKLEY_GROUP_MODP1024 and OAKLEY_GROUP_MODP1536 supported.  Attribute
> OAKLEY_GROUP_DESCRIPTION

Looks like you don't have the the so called 'high grade encryption' 
support on your Windows box, but it seems to continue anyways.

> May 28 15:52:23 localhost pluto[14320]: "test"[1] a.b.c.d #1: transition
> from state (null) to state STATE_MAIN_R1
> May 28 15:52:24 localhost pluto[14320]: "test"[1] a.b.c.d #1:
> NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-02/03: peer is
> NATed
> May 28 15:52:24 localhost pluto[14320]: "test"[1] a.b.c.d #1: transition
> from state STATE_MAIN_R1 to state STATE_MAIN_R2
> May 28 15:52:24 localhost pluto[14320]: "test"[1] a.b.c.d #1: Peer ID is
> ID_DER_ASN1_DN: 'C=US, ST=xxx, L=xxx, O=yyy, OU=yyy, CN=test04 at none.com,
> E=test04 at none.com'
> May 28 15:52:24 localhost pluto[14320]: "test"[1] a.b.c.d #1: issuer crl
> not found
> May 28 15:52:24 localhost pluto[14320]: "test"[1] a.b.c.d #1: issuer crl
> not found
> May 28 15:52:24 localhost pluto[14320]: "test4"[1] a.b.c.d #1: deleting
> connection "test" instance with peer a.b.c.d {isakmp=#0/ipsec=#0}
> May 28 15:52:24 localhost pluto[14320]: "test4"[1] a.b.c.d #1:
> transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
> May 28 15:52:24 localhost pluto[14320]: | NAT-T: new mapping
> a.b.c.d:500/45017)
> May 28 15:52:24 localhost pluto[14320]: "test4"[1] a.b.c.d:45017 #1:
> sent MR3, ISAKMP SA established
> May 28 15:52:24 localhost pluto[14320]: "test4"[1] a.b.c.d:45017 #1:
> received Delete SA payload: deleting ISAKMP State #1
> May 28 15:52:24 localhost pluto[14320]: "test4"[1] a.b.c.d:45017:
> deleting connection "test4" instance with peer a.b.c.d
> {isakmp=#0/ipsec=#0}

received Delete SA payload <-- Means Windows told us to delete the 
connection, because it didn't like something.  Enable oakley.log on 
Windows box to see why it's unhappy.


-- 
Ken Bantoft			VP Business Development
ken at xelerance.com		Xelerance Corporation
sip://toronto.xelerance.com	http://www.xelerance.com

The future is here. It's just not evenly distributed yet. 
        -- William Gibson

More information about the Users mailing list