[Openswan Users] Roadwarrior Configuration

Daniela Gradim daniela.gradim at fortevisiomedica.com
Tue Mar 22 16:41:18 CET 2005 

Hej!

I have the following connection and I can not get it working:

laptop (laptop.cer)
     I           10.100.0.0/24 Roadwarrior subnet
10.100.0.1
Netgear FVS318v3
v.x.y.z  DMZ address
     I
a.b.c.d
ADSL Modem (dynamic/static ip)
e.f.g.h
     I
Internet
     I
m.n.o.p
firewall
10.141.129.126
     I           network subnet 10.141.129.0/25
10.141.129.1
Openswan (server.cer)

The CA is rootCA.cer

I want to use it with certificates as above, two tunnels one in each
direction.

THis is what I have tried:

config setup
        interfaces=%defaultroute
        klipsdebug=all
        plutodebug=dns

conn %default
        left=%defaultroute

conn road-warrior
        authby=rsasig
        left=%defaultroute
        leftcert=server.cer
        leftsubnet=10.141.129.0/25
        rightrsasigkey=%cert
        right=%any
        rightsubnetwithin=10.100.0.0/24
        auto=add

What is wrong? It does not get it working and I can not see in the logs
what the problem is.


I still have problem with the setup. The following output do I get:

It seems to hang during initialisation. I have the latest build. Still no
difference. The question is if I am doing right considering the previous mail
with the setup.

Can anyone advice on this?

Regards,

--------
Mar 22 01:01:12 gw3 pluto[7016]: adding interface lo/lo ::1:500
Mar 22 01:01:12 gw3 pluto[7016]: | connect_to_host_pair: 10.141.129.1:500
0.0.0.0:500 -> hp:none
Mar 22 01:01:12 gw3 pluto[7016]: loading secrets from "/etc/ipsec.secrets"
Mar 22 01:01:12 gw3 pluto[7016]: | loaded private key for keyid:
PPK_RSA:AQO6ni2+o
Mar 22 01:01:12 gw3 pluto[7016]:   loaded private key file
'/etc/ipsec.d/private/gw3.perevotech.com.p1.pem' (1033 bytes)
Mar 22 01:01:12 gw3 pluto[7016]: |   file content is not binary ASN.1
Mar 22 01:01:12 gw3 pluto[7016]: |   -----BEGIN RSA PRIVATE KEY-----
Mar 22 01:01:12 gw3 pluto[7016]: |   -----END RSA PRIVATE KEY-----
Mar 22 01:01:12 gw3 pluto[7016]: |   file coded in PEM format
Mar 22 01:01:12 gw3 pluto[7016]: | L0 - RSAPrivateKey:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - version:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - modulus:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - publicExponent:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - privateExponent:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - prime1:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - prime2:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - exponent1:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - exponent2:
Mar 22 01:01:12 gw3 pluto[7016]: | L1 - coefficient:
Mar 22 01:01:12 gw3 pluto[7016]: | loaded private key for keyid:
PPK_RSA:AwEAAd9vZ
Mar 22 01:01:12 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3592
seconds
Mar 22 01:01:12 gw3 pluto[7016]: |
Mar 22 01:01:12 gw3 pluto[7016]: | *received whack message
Mar 22 01:01:12 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3592
seconds
Mar 22 01:01:12 gw3 pluto[7016]: |
Mar 22 01:01:12 gw3 pluto[7016]: | *received whack message
Mar 22 01:01:12 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3592
seconds
Mar 22 01:01:39 gw3 pluto[7016]: |
Mar 22 01:01:39 gw3 pluto[7016]: | *received whack message
Mar 22 01:01:39 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3565
seconds
Mar 22 01:03:22 gw3 pluto[7016]: |
Mar 22 01:03:22 gw3 pluto[7016]: | *received whack message
Mar 22 01:03:22 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3462
seconds
Mar 22 01:03:23 gw3 pluto[7016]: |
Mar 22 01:03:23 gw3 pluto[7016]: | *received whack message
Mar 22 01:03:23 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3461
seconds
Mar 22 01:03:24 gw3 pluto[7016]: |
Mar 22 01:03:24 gw3 pluto[7016]: | *received whack message
Mar 22 01:03:24 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3460
seconds
Mar 22 01:04:23 gw3 pluto[7016]: |
Mar 22 01:04:23 gw3 pluto[7016]: | *received whack message
Mar 22 01:04:23 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3401
seconds
Mar 22 01:04:47 gw3 pluto[7016]: |
Mar 22 01:04:47 gw3 pluto[7016]: | *received whack message
Mar 22 01:04:47 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3377
seconds
Mar 22 01:06:44 gw3 pluto[7016]: |
Mar 22 01:06:44 gw3 pluto[7016]: | *received whack message
Mar 22 01:06:44 gw3 pluto[7016]: | next event EVENT_REINIT_SECRET in 3260
seconds



----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

More information about the Users mailing list