[Openswan Users] Problem with conn road
sasa
sasa at shoponweb.it
Fri Oct 28 13:24:55 CEST 2005
Hi, I have a problem with road connection from winXP to openswan.
In the log file I have:
Oct 28 11:51:36 test2 pluto[3968]: "left-road"[1] 213.45.199.2 #1: sent MR3, ISAKMP SA established
Oct 28 11:51:36 test2 pluto[3968]: "left-road"[1] 213.45.199.2 #2: responding to Quick Mode {msgid:bea52cf0}
Oct 28 11:51:36 test2 pluto[3968]: "left-road"[1] 213.45.199.2 #2: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1
Oct 28 11:51:36 test2 pluto[3968]: "left-road"[1] 213.45.199.2 #2: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
Oct 28 11:51:36 test2 pluto[3968]: "left-road"[1] 213.45.199.2 #2: IPsec SA established {ESP=>0x6c79a2b9 <0xf429e510 xfrm=3DES_0-HMAC_MD5}
000 "left-road": x.x.x.x:17/0---x.x.x.y...%any:17/1701; unrouted; eroute owner: #0
000 "left-road": srcip=unset; dstip=unset
000 "left-road": ike_life: 3600s; ipsec_life: 28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0
000 "left-road": policy: PSK+ENCRYPT; prio: 32,32; interface: eth0;
000 "left-road": newest ISAKMP SA: #0; newest IPsec SA: #0;
000 "left-road"[1]: x.x.x.x:17/0---x.x.x.y...213.45.199.2:17/1701; erouted; eroute owner: #2
000 "left-road"[1]: srcip=unset; dstip=unset
000 "left-road"[1]: ike_life: 3600s; ipsec_life: 28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0
000 "left-road"[1]: policy: PSK+ENCRYPT; prio: 32,32; interface: eth0;
000 "left-road"[1]: newest ISAKMP SA: #1; newest IPsec SA: #2;
000 "left-road"[1]: IKE algorithm newest: 3DES_CBC_192-SHA1-MODP2048
000
000 #2: "left-road"[1] 213.45.199.2:500 STATE_QUICK_R2 (IPsec SA established); EVENT_SA_REPLACE in 3306s; newest IPSEC; eroute owner
000 #2: "left-road"[1] 213.45.199.2 esp.6c79a2b9 at 213.45.199.2 esp.f429e510 at x.x.x.x
000 #1: "left-road"[1] 213.45.199.2:500 STATE_MAIN_R3 (sent MR3, ISAKMP SA established); EVENT_SA_REPLACE in 3306s; newest ISAKMP; nodpd
.. my ipsec.conf:
conn left-road
auto=add
authby=secret
pfs=no
type=transport
left=x.x.x.x
leftnexthop=x.x.x.y
leftprotoport=17/0
right=%any
rightprotoport=17/1701
.. my l2tpd.conf:
[global]
listen-addr = 192.168.0.180
port=1701
[lns default]
ip range = 192.168.0.160-192.168.0.165
local ip = 192.168.0.166
require chap = yes
refuse pap = yes
require authentication = yes
name = test2
ppp debug = yes
pppoptfile = /etc/ppp/options.l2tpd
length bit = yes
..where is my error ?
thanks.
Salvatore.
More information about the Users
mailing list