[Openswan Users] initial Main Mode message received on...

Francesco Defilippo francesco.defilippo at sys-net.it
Fri Sep 3 13:00:55 CEST 2004 

Hello, I'v found the following message:
  
Sep  3 11:56:49 fireball kernel: udp_encap_rcv(): Unhandled UDP encap 
type: 1

this is related with nat-t?

francesco.

Francesco Defilippo wrote:

> Hello,
>    I'm testing a roadwarrior setup with nat-t and x509, my setup is:
>
> [wifi client] <----> [whifi-gw-nat] <---------> [vpngateway]<->[lan]
>               172.x                192.168.1.x                192.168.2.x
>
>
> conf of vpn gateway:
>
> version 2.0
>
> config setup
>        interfaces=ipsec0=eth0
>        nat_traversal=yes
>
> conn %default
>        keyingtries=1
>        compress=yes
>        disablearrivalcheck=no
>        authby=rsasig
>        leftrsasigkey=%cert
>        rightrsasigkey=%cert
>
> include /etc/ipsec.d/examples/no_oe.conf
>
> conn rw
>        left=192.168.1.252
>        leftsubnet=192.168.2.0/255.255.255.0
>        leftcert=fireball_key.pem
>        leftprotoport=17/1701
>        right=%any
>        rightsubnet=%any
>        pfs=no
>        auto=add
>
> when the rw try to connect I see:
>
> Sep  3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500: 
> ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
> Sep  3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500: 
> ignoring Vendor ID payload [FRAGMENTATION]
> Sep  3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500: 
> received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
> Sep  3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500: 
> ignoring Vendor ID payload [26244d38eddb61b3...]
> Sep  3 10:47:09 fireball pluto[28549]: packet from 192.168.1.229:500: 
> initial Main Mode message received on 192.168.1.252:500 but no 
> connection has been authorized
> Sep  3 10:47:23 fireball pluto[28549]: packet from 192.168.1.229:500: 
> ignoring Delete SA payload: not encrypted
>
> PS: we use whiteboxlinux 3 (rhel3) with openswan-2.1.5-1.as3
>
>
>
>    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497
>
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users



    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497

More information about the Users mailing list