[Openswan Users] Win XP & Ipsec

MArtin Erasmus martin at onyx.co.za
Thu Nov 4 19:40:22 CET 2004


HI

I am trying to set this up, I have followed  the
Using FreeS/WAN with Windows L2TP/IPsec . in my secure log is the 
following, what am I missing

in my ip sec.conf is

conn besho-bob
 authby=secret|rsasig
 pfs=no
 left=besho.gotdns.org
 leftnexthop=%defaultroute
 leftrsasigkey=%cert
 leftcert=/etc/ipsec.d/certs/madcow.pem
 leftprotoport=17/1701
 #The remote user
 right=%any
 rightrsasigkey=%cert
 rightcert=/etc/ipsec.d/certs/bob.pem
 rightprotoport=17/1701
 auto=add
 keyingtries=3

I am running off a adsl link

Nov  4 19:26:37 madcow pluto[4499]: "besho-bob"[1] 165.165.145.100 #7: 
sent MR3, ISAKMP SA established
Nov  4 19:26:37 madcow pluto[4499]: "besho-bob"[1] 165.165.145.100 #7: 
cannot respond to IPsec SA request because no connection is known for 
165.165.158.38[C=ZA, ST=gauteng, L=winchester, O=Beswick, OU=IT, 
CN=madcow, E=martin at beswick.co.za,S=C]:17/0...165.165.145.100[C=ZA, 
ST=gauteng, L=winchester, O=Beswick, OU=IT, CN=bob, 
E=martin at beswick.co.za,S=C]:17/1701
Nov  4 19:26:38 madcow pluto[4499]: "besho-bob"[1] 165.165.145.100 #7: 
Quick Mode I1 message is unacceptable because it uses a previously used 
Message ID 0x9d6fafc9 (perhaps this is a duplicated packet)

Thanks
MArtin



More information about the Users mailing list