[Openswan Users]
initial Main Mode message received on 192.168.1.252:500 but noconnection
has been authorized
Francesco Defilippo
francesco.defilippo at sys-net.it
Fri Sep 3 11:59:16 CEST 2004
Hello,
I'm testing a roadwarrior setup with nat-t and x509, my setup is:
[wifi client] <----> [whifi-gw-nat] <---------> [vpngateway]<->[lan]
172.x 192.168.1.x 192.168.2.x
conf of vpn gateway:
version 2.0
config setup
interfaces=ipsec0=eth0
nat_traversal=yes
conn %default
keyingtries=1
compress=yes
disablearrivalcheck=no
authby=rsasig
leftrsasigkey=%cert
rightrsasigkey=%cert
include /etc/ipsec.d/examples/no_oe.conf
conn rw
left=192.168.1.252
leftsubnet=192.168.2.0/255.255.255.0
leftcert=fireball_key.pem
leftprotoport=17/1701
right=%any
rightsubnet=%any
pfs=no
auto=add
when the rw try to connect I see:
Sep 3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500:
ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Sep 3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500:
ignoring Vendor ID payload [FRAGMENTATION]
Sep 3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500:
received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
Sep 3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500:
ignoring Vendor ID payload [26244d38eddb61b3...]
Sep 3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500:
initial Main Mode message received on 192.168.1.252:500 but no
connection has been authorized
Sep 3 10:47:23 fireball pluto[28549]: packet from 192.168.1.229:500:
ignoring Delete SA payload: not encrypted
PS: we use whiteboxlinux 3 (rhel3) with openswan-2.1.5-1.as3
SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497
More information about the Users
mailing list