[Openswan Users] No VPN from FC3 client to Sentinel (?) server
Paul Wouters
paul at xelerance.com
Thu Feb 16 17:24:13 CET 2006
On Wed, 15 Feb 2006, Davide Bolcioni wrote:
> [root at host ~]# ipsec auto --up c
> 104 "c" #1: STATE_MAIN_I1: initiate
> 003 "c" #1: received Vendor ID payload [Openswan (this version) 2.4.4
> X.509-1.5.4 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
> 003 "c" #1: received Vendor ID payload [Dead Peer Detection]
> 003 "c" #1: received Vendor ID payload [RFC 3947] method set to=109
> 106 "c" #1: STATE_MAIN_I2: sent MI2, expecting MR2
> 003 "c" #1: NAT-Traversal: Result using 3: i am NATed
> 108 "c" #1: STATE_MAIN_I3: sent MI3, expecting MR3
> 004 "c" #1: STATE_MAIN_I4: ISAKMP SA established {auth=OAKLEY_RSA_SIG
> cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
> 117 "c" #2: STATE_QUICK_I1: initiate
> 010 "c" #2: STATE_QUICK_I1: retransmission; will wait 20s for response
> 010 "c" #2: STATE_QUICK_I1: retransmission; will wait 40s for response
> 031 "c" #2: max number of retransmissions (2) reached STATE_QUICK_I1. No
> acceptable response to our first Quick Mode message: perhaps peer likes
> no proposal
the other end rejected you without informing you. Check its log files.
Paul
More information about the Users
mailing list