[Openswan Users] Creating Win XP vpn connection

peters at exemplar-associates.com peters at exemplar-associates.com
Wed Apr 19 11:08:37 CEST 2006 

Hi,

I am trying to establish a VPN using Openswan on Ubuntu
and Win XP Pro boxes following Nate Carlsons excellent guide.
This is not my area of expertise so please forgive the basic
questions.

Although I have followed the guide closely and see similar output
I have been unable to establish a connection nor work out
exactly what the error is.

I suspect that I may be using the wrong ip addresses or something
like that and I have been experimenting with various permutations
as I can't work out from Nate's article what addresses I should
be using.

This is the client ipsec.conf:

conn roadwarrior
=09left=3D%any
=09right=3D192.168.0.13
=09rightcert=3Dfoxtrot.exemplarassociates.pem
=09rightca=3D=22C=3DUK,S=3DBeds,L=3DBiggleswade,O=3DExemplar =
Associates,CN=3DCA=22
=09network=3Dauto
=09auto=3Dstart
=09pfs=3Dyes

conn roadwarrior-net
=09left=3D%any
=09right=3D192.168.0.13
=09rightcert=3Dfoxtrot.exemplarassociates.pem
=09rightsubnet=3D192.168.0.0/255.255.255.0
=09rightca=3DC=3DUK, S=3DBeds, L=3DBiggleswade, O=3DExemplar Associates, =
CN=3DCA=22
=09network=3Dauto
=09auto=3Dstart
=09pfs=3Dyes

Here is the tail of the oakley.log from the PC:

Source IP Address Mask 255.255.255.255
Destination IP Address 192.168.0.13
Destination IP Address Mask 255.255.255.255
Protocol 0
Source Port 0
Destination Port 0
IKE Local Addr=20
IKE Peer Addr=20

 4-19: 10:27:34:281:6cc=20
 4-19: 10:27:34:281:6cc Me

 4-19: 10:27:34:281:6cc No response from peer

 4-19: 10:27:34:281:6cc 0x0 0x0
 4-19: 10:27:34:281:6cc constructing ISAKMP Header
 4-19: 10:27:34:281:6cc constructing DELETE. MM 000F6F08
 4-19: 10:27:34:281:6cc=20
 4-19: 10:27:34:281:6cc Sending: SA =3D 0x000F6F08 to 192.168.0.13:Type 1
 4-19: 10:27:34:281:6cc ISAKMP Header: (V1.0), len =3D 56=20
 4-19: 10:27:34:281:6cc   I-COOKIE d56f0a69956ea0bc
 4-19: 10:27:34:281:6cc   R-COOKIE 0000000000000000
 4-19: 10:27:34:281:6cc   exchange: ISAKMP Informational Exchange
 4-19: 10:27:34:281:6cc   flags: 0=20
 4-19: 10:27:34:281:6cc   next payload: DELETE
 4-19: 10:27:34:281:6cc   message ID: a5e1e441


The clinet has a real ip address 192.168.1.6 and the server
is 192.168.1.13



Peter

More information about the Users mailing list