[Openswan Users]
Fw: zywall 30w to FreeS/WAN on SLES 9.0 2.6 kernal question
LeRoy Grubbs
lhgrubbs at earthlink.net
Sat May 21 13:08:17 CEST 2005
Please help. Getting past phase 1 SA, but failing on phase 2. Here is a link to the current config and barf file.
http://www.advbuscomputing.com/zywall_config.html
What is it in the kernel that is required to fix this?
ERROR: netlink response for Add SA esp.8fbee2f6 at 65.41.196.190 included errno 3: No such process
LeRoy
pluto[14481]: "ui" #1: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
May 21 11:45:17 UIWMO pluto[14481]: "ui" #1: ignoring Vendor ID payload [b858d1addd08c1e8...]
May 21 11:45:18 UIWMO pluto[14481]: "ui" #1: NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-00/01: no NAT detected
May 21 11:45:18 UIWMO pluto[14481]: "ui" #1: Peer ID is ID_IPV4_ADDR: '68.187.11.100'
May 21 11:45:18 UIWMO pluto[14481]: "ui" #1: ISAKMP SA established
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: initiating Quick Mode PSK+ENCRYPT+TUNNEL+UP {using isakmp#1}
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: ignoring informational payload, type IPSEC_RESPONDER_LIFETIME
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: route-client output: RTNETLINK answers: Network is unreachable
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: route-client output: /usr/lib/ipsec/_updown: `ip route add 192.168.1.0/24 via 10.10.0.2 dev eth0' failed
May 21 11:45:18 UIWMO pluto[14481]: "ui" #2: route-client command exited with status 2
May 21 11:45:19 UIWMO pluto[14481]: packet from 68.187.11.100:500: Main Mode message is part of an unknown exchange
May 21 11:45:21 UIWMO pluto[14481]: packet from 63.252.100.58:500: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
May 21 11:45:21 UIWMO pluto[14481]: packet from 63.252.100.58:500: ignoring Vendor ID payload [625027749d5ab97f...]
May 21 11:45:21 UIWMO pluto[14481]: packet from 63.252.100.58:500: initial Main Mode message received on 65.41.196.190:500 but no connection has been authorized
May 21 11:45:22 UIWMO pluto[14481]: "ui" #2: ignoring informational payload, type IPSEC_RESPONDER_LIFETIME
May 21 11:45:22 UIWMO pluto[14481]: "ui" #2: ERROR: netlink response for Add SA esp.8fbee2f6 at 65.41.196.190 included errno 3: No such process
More information about the Users
mailing list