[Openswan Users] net-to-net connection failing to establish IPSEC SA

Ted Kaczmarek tedkaz at optonline.net
Thu Feb 24 09:10:25 CET 2005


On Wed, 2005-02-23 at 18:45 +0530, John PN wrote:
> Hello,
> 
> I have been trying to set up a simple net-to-net connection using two
> Debian Linux boxes with kernel 2.4.18. I installed OpenSWAN 2.3.1dr3
> from source on both gateways.
> 
> The situation right now is that when I start things up, I see in the
> output of ipsec whack --status, that the ISAKMP SA has been
> established, but the IPSec SA does not get established. This happens
> at both ends, and the tunnel does not get established.
> 
> I am new to OpenSWAN and also have only some basic knowledge of
> firewalling using iptables. I have tried with my limited knowledge to
> solve this issue, but have not been able to. It is probably something
> small that I am overlooking. Please point out anything that I could be
> missing.
> 
> In case it is necessary, I have put up the ipsec barf output of the
> left gateway at http://ipsec.altivotech.net/ipsec_barf_left.txt
> 
> Thanks and regards,
> John
> _______________________________________________
I wouldn't post a barf right away, be best to post your configs from
both sides first.
Also never a good idea to have your real ip's in these types of posts.

Ted



More information about the Users mailing list