[Openswan Users]

Greg gregory.domagala at aliceadsl.fr
Tue Aug 8 18:40:39 EDT 2006 

Hello Paul,

Thanks for your concils

I've disabled vpn pass trough on my router and made change in ipsec.conf


There is my new ipsec.conf

version 2.0

config setup
      interfaces=%defaultroute
      nat_traversal=yes
 
virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/24,%v4:81.1
27.61.93/32
      # Debug-logging controls :«none» for (almost) none,«all» for lots.
      klipsdebug=none
      plutodebug="none"

conn %default
        keyingtries=1
        compress=yes
        disablearrivalcheck=no
        authby=rsasig
        leftrsasigkey=%cert
        rightrsasigkey=%cert

conn roadwarrior-l2tp
        left=%defaultroute
        leftcert=/etc/ipsec.d/certs/cert.pem
        leftprotoport=17/1701
        right=%any
        rightprotoport=17/1701
        rightsubnet=vhost:%no,%priv
        pfs=no
        auto=add
        type=transport

conn block
        auto=ignore

conn private
        auto=ignore

conn private-or-clear
        auto=ignore

conn clear-or-private
        auto=ignore

conn clear
        auto=ignore

conn packetdefault
        auto=ignore



Nothing change if I comment type=transport 

Now I have this log :(

Thanks

Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [FRAGMENTATION]
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set to=106
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [Vid-Initial-Contact]
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: initial
Main Mode message received on 192.168.0.4:500 but no connection has been
authorized
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [FRAGMENTATION]
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set to=106
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [Vid-Initial-Contact]
Aug  8 23:17:01 darko pluto[4751]: packet from 90.95.19.131:500: initial
Main Mode message received on 192.168.0.4:500 but no connection has been
authorized
Aug  8 23:17:03 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Aug  8 23:17:03 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [FRAGMENTATION]
Aug  8 23:17:03 darko pluto[4751]: packet from 90.95.19.131:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set to=106
Aug  8 23:17:03 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [Vid-Initial-Contact]
Aug  8 23:17:03 darko pluto[4751]: packet from 90.95.19.131:500: initial
Main Mode message received on 192.168.0.4:500 but no connection has been
authorized
Aug  8 23:17:07 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Aug  8 23:17:07 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [FRAGMENTATION]
Aug  8 23:17:07 darko pluto[4751]: packet from 90.95.19.131:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set to=106
Aug  8 23:17:07 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [Vid-Initial-Contact]
Aug  8 23:17:07 darko pluto[4751]: packet from 90.95.19.131:500: initial
Main Mode message received on 192.168.0.4:500 but no connection has been
authorized
Aug  8 23:17:15 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Aug  8 23:17:15 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [FRAGMENTATION]
Aug  8 23:17:15 darko pluto[4751]: packet from 90.95.19.131:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set to=106
Aug  8 23:17:15 darko pluto[4751]: packet from 90.95.19.131:500: ignoring
Vendor ID payload [Vid-Initial-Contact]
Aug  8 23:17:15 darko pluto[4751]: packet from 90.95.19.131:500: initial
Main Mode message received on 192.168.0.4:500 but no connection has been
authorized

More information about the Users mailing list