[Openswan Users] More on the Watchguard Firebox II issue
Paul Wouters
paul at xelerance.com
Sat Jan 28 00:42:53 CET 2006
On Fri, 27 Jan 2006, Jason Green wrote:
> I searched around a bit more and got OpenS/WAN to get a little further, but
> I'm having new issues now. I'm running openswan 2.4.0 on AMD64 Ubuntu
> Breezy. The linux box is being a Zyxell Firewall which has IPSec VPN
> passthrough enabled. So, when I say "my public ip", I mean the one assigned
> to the firewall, not the linux box itself. The linux box has a private ip
> 192.168.1.xxx address.
You must disable IPsec passthrough.
> 117 "myconn" #2: STATE_QUICK_I1: initiate
> 010 "myconn" #2: STATE_QUICK_I1: retransmission; will wait 20s for response
> 010 "myconn" #2: STATE_QUICK_I1: retransmission; will wait 40s for response
> 031 ""myconn"" #2: max number of retransmissions (2) reached
> STATE_QUICK_I1. No acceptable response to our first Quick Mode message:
> perhaps peer likes no proposal
What does the other end say in its logs?
Paul
More information about the Users
mailing list