[Openswan Users] Firewall rules --- Hers's the correct log..
UR right Paul....
Paul Wouters
paul at xelerance.com
Tue May 10 21:05:04 CEST 2005
On Tue, 10 May 2005, Deepak Naidu wrote:
> May 10 22:53:15 eftest pluto[13315]: "roadwarrior-net"[1] 59.182.19.104 #6: IPsec SA established {ESP=>0xe2b38668 <0x1c79740f xfrm=3DES_0-HMAC_MD5 NATD=59.182.19.104}
>
> After this as there is no response to the above pings which determine(request time out in win xp side)
Do try more then the first 3 pings. The first few will always fail because
XP does not cache packets while bringing up the IPsec connection.
What are the logs after the above? Does Openswan delete the connection
because it receives a Delete/Notify? If so, what does oakley.log say about
why it is sending these in the first place? Or is there another error?
If no errors, then likely somewhere a firewall is filtering udp 4500, since
you are using NAT-T.
Paul
More information about the Users
mailing list