[Openswan Users] Can't authenticate: no preshared key found

Wed Dec 27 08:31:30 EST 2006

Hi Andrew

I don't know why this would make a difference, but I remeber I had this mistake once and it cost me quite some nerves to resolve this...

Regarding the espauthkey: Sorry, I misread your file somehow... or I was confused a bit...

best wihes

jörg

________________________________

Von: Andrew Johnstone [mailto:andrew at ajohnstone.com] 
Gesendet: Mittwoch, 27. Dezember 2006 11:44
An: Bartz, Joerg; users at openswan.org
Betreff: Re: [Openswan Users] Can't authenticate: no preshared key found

Hi,

    Mind explaining why this would make a difference?
    Also why would I not need the espauth key in my ipsec.conf file, as I thought this would have been the pre-shared key?

Thanks

Andrew

	----- Original Message ----- 
	From: Bartz, Joerg <mailto:joerg.bartz at comnet.de>  
	To: users at openswan.org 
	Sent: Wednesday, December 27, 2006 7:19 AM
	Subject: Re: [Openswan Users] Can't authenticate: no preshared key found

	Hi Andrew,

	do you have a "Newline" -> pressed enter at the end of the line in the ipsec.secrets file? And I think you won't need espauthkey in the ipsec.conf

	best wishes,

	jörg

________________________________

	Von: users-bounces at openswan.org [mailto:users-bounces at openswan.org] Im Auftrag von Andrew Johnstone
	Gesendet: Dienstag, 26. Dezember 2006 17:07
	An: users at openswan.org
	Cc: dev at openswan.org
	Betreff: [Openswan Users] Can't authenticate: no preshared key found

	Hi
	    Currently getting the following error when starting ipsec up.
	    ipsec auto --down comstock
	    [root at server1 log]# ipsec auto --up comstock
	    104 "comstock" #5: STATE_MAIN_I1: initiate
	    003 "comstock" #5: ignoring unknown Vendor ID payload  [4048b7d56ebce88525e7de7f00d6c2d3c0000000]
	    003 "comstock" #5: Can't authenticate: no preshared key found for `122.252.4.168' and         `208.47.215.167'.  Attribute OAKLEY_AUTHENTICATION_METHOD
	    003 "comstock" #5: no acceptable Oakley Transform
	    214 "comstock" #5: STATE_MAIN_I1: NO_PROPOSAL_CHOSEN
	    My configuration file is.
	    conn comstock
	            leftsubnet=122.252.4.1/32
	            leftnexthop=%defaultroute
	            left=122.252.4.168
	            right=208.47.215.167
	            rightsubnet=192.168.30.0/24
	            rightnexthop=208.47.215.129
	            auto=start
	            authby=secret
	            espauthkey=V.....^B
	            esp=3des-md5-96
	            auth=esp
	    I also appended
	    this to /etc/ipsec.secrets
	    122.252.4.168 %any: PSK "Vg.....^B"
	    Any idea what i'm doing wrong?

	Thanks

________________________________

	_______________________________________________
	Users at openswan.org
	http://lists.openswan.org/mailman/listinfo/users
	Building and Integrating Virtual Private Networks with Openswan: 
	http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20061227/7b12cdc3/attachment.html 