[Openswan Users] Can't authenticate: no preshared key found

Andrew Johnstone andrew at ajohnstone.com
Wed Dec 27 05:43:33 EST 2006 

Hi,

    Mind explaining why this would make a difference?
    Also why would I not need the espauth key in my ipsec.conf file, as I thought this would have been the pre-shared key?

Thanks

Andrew
  ----- Original Message ----- 
  From: Bartz, Joerg 
  To: users at openswan.org 
  Sent: Wednesday, December 27, 2006 7:19 AM
  Subject: Re: [Openswan Users] Can't authenticate: no preshared key found


  Hi Andrew,

  do you have a "Newline" -> pressed enter at the end of the line in the ipsec.secrets file? And I think you won't need espauthkey in the ipsec.conf

  best wishes,

  jörg





------------------------------------------------------------------------------
  Von: users-bounces at openswan.org [mailto:users-bounces at openswan.org] Im Auftrag von Andrew Johnstone
  Gesendet: Dienstag, 26. Dezember 2006 17:07
  An: users at openswan.org
  Cc: dev at openswan.org
  Betreff: [Openswan Users] Can't authenticate: no preshared key found


  Hi
      Currently getting the following error when starting ipsec up.
      ipsec auto --down comstock
      [root at server1 log]# ipsec auto --up comstock
      104 "comstock" #5: STATE_MAIN_I1: initiate
      003 "comstock" #5: ignoring unknown Vendor ID payload  [4048b7d56ebce88525e7de7f00d6c2d3c0000000]
      003 "comstock" #5: Can't authenticate: no preshared key found for `122.252.4.168' and         `208.47.215.167'.  Attribute OAKLEY_AUTHENTICATION_METHOD
      003 "comstock" #5: no acceptable Oakley Transform
      214 "comstock" #5: STATE_MAIN_I1: NO_PROPOSAL_CHOSEN
      My configuration file is.
      conn comstock
              leftsubnet=122.252.4.1/32
              leftnexthop=%defaultroute
              left=122.252.4.168
              right=208.47.215.167
              rightsubnet=192.168.30.0/24
              rightnexthop=208.47.215.129
              auto=start
              authby=secret
              espauthkey=V.....^B
              esp=3des-md5-96
              auth=esp
      I also appended
      this to /etc/ipsec.secrets
      122.252.4.168 %any: PSK "Vg.....^B"
      Any idea what i'm doing wrong?

  Thanks


------------------------------------------------------------------------------


  _______________________________________________
  Users at openswan.org
  http://lists.openswan.org/mailman/listinfo/users
  Building and Integrating Virtual Private Networks with Openswan: 
  http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20061227/dab2b82d/attachment-0001.html

More information about the Users mailing list