[Openswan Users] Problem With Ipsec Automatic Connection...(Openswan-2.3.0)

Paul Wouters paul at xelerance.com
Wed Apr 27 13:09:45 CEST 2005


On Wed, 27 Apr 2005, mohan chandra wrote:

> Following is the error appeared when trying to up the
> automatic connection b/w two hosts
>
> ## for psk-other connection ( secret )
> [root at mohan root]# ipsec auto --add psk-other
> [root at mohan root]# ipsec auto --up psk-other
> 104 "psk-other" #36: STATE_MAIN_I1: initiate
> 010 "psk-other" #36: STATE_MAIN_I1: retransmission;
> will wait 20s for response
> 010 "psk-other" #36: STATE_MAIN_I1: retransmission;
> will wait 40s for response
> 031 "psk-other" #36: max number of retransmissions (2)
> reached STATE_MAIN_I1.  No response (or no acceptable
> response) to our first IKE message
> 000 "psk-other" #36: starting keying attempt 2 of at
> most 3, but releasing whack
> [root at mohan root]#

Eitehr teh other end immediately drops the first (wrong) packet
and logs the error, or the IKE packet is not reaching the other
machine (firewall rules)

Paul


More information about the Users mailing list