[Openswan Users] Windows XP Connecting to OpenSwan 2.2.0 on Debian
RITTER, Philippe
phr at cdm.smis.ch
Fri Nov 19 09:04:17 CET 2004
Hello all,
I need your help, because I don't find the solution on the Net to my routing
problem. Thanks foy any help to resolve this !
Best regards
Philippe RITTER
Here is my config :
version 2.0 # conforms to second version of ipsec.conf specification
# basic configuration
config setup
# Debug-logging controls: "none" for (almost) none, "all" for lots.
# klipsdebug=none
# plutodebug="control parsing"
interfaces=%defaultroute
conn cdm-phr
left=212.***.***.***
leftprotoport="17/0"
esp="3des-md5"
authby="secret"
ikelifetime="28800"
keyexchange="ike"
pfs="no"
keylife="3600"
rightid="0.0.0.0"
right="0.0.0.0"
auto=start
rightprotoport="17/%any"
compress="no"
type="transport"
rightsubnetwithin="0.0.0.0/0"
ike="3des-sha-modp2048"
And wenn I connect from my Windows XP SP2 PC, I get this in the log file :
Nov 19 09:00:23 gibraltar pluto[3720]: packet from 193.247.83.238:500:
received and ignored informational message
Nov 19 09:01:24 gibraltar pluto[3720]: packet from 193.247.83.238:500:
ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Nov 19 09:01:24 gibraltar pluto[3720]: packet from 193.247.83.238:500:
ignoring Vendor ID payload [FRAGMENTATION]
Nov 19 09:01:24 gibraltar pluto[3720]: packet from 193.247.83.238:500:
received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but
already using method 0
Nov 19 09:01:24 gibraltar pluto[3720]: packet from 193.247.83.238:500:
ignoring Vendor ID payload [26244d38eddb61b3172a36e3d0cfb819]
Nov 19 09:01:24 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9:
responding to Main Mode from unknown peer 193.247.83.238
Nov 19 09:01:24 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9:
transition from state (null) to state STATE_MAIN_R1
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9:
transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9: Peer
ID is ID_IPV4_ADDR: '193.247.83.238'
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9: I did
not send a certificate because I do not have one.
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9:
transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9: sent
MR3, ISAKMP SA established
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #10:
responding to Quick Mode
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #10:
transition from state (null) to state STATE_QUICK_R1
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #10:
route-host output: /usr/lib/ipsec/_updown: doroute `ip route add
193.247.83.238/32 via 193.247.83.238 dev ppp0 ' failed (RTNETLINK answers:
Network is unreachable)
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #10:
transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 19 09:01:25 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #10:
IPsec SA established {ESP=>0xfc0c524a <0x48b9e46e}
Nov 19 09:01:45 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9:
received Delete SA(0xfc0c524a) payload: deleting IPSEC State #10
Nov 19 09:01:45 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9:
received and ignored informational message
Nov 19 09:01:45 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238 #9:
received Delete SA payload: deleting ISAKMP State #9
Nov 19 09:01:45 gibraltar pluto[3720]: "cdm-phr"[4] 193.247.83.238: deleting
connection "cdm-phr" instance with peer 193.247.83.238 {isakmp=#0/ipsec=#0}
Nov 19 09:01:45 gibraltar pluto[3720]: "cdm-phr": unroute-host output:
/usr/lib/ipsec/_updown: doroute `ip route delete 193.247.83.238/32 via
193.247.83.238 dev ppp0 ' failed (RTNETLINK answers: No such process)
Nov 19 09:01:45 gibraltar pluto[3720]: packet from 193.247.83.238:500:
received and ignored informational message
More information about the Users
mailing list