[Openswan Users] More on the Watchguard Firebox II issue

Paul Wouters paul at xelerance.com
Sat Jan 28 00:42:53 CET 2006

On Fri, 27 Jan 2006, Jason Green wrote:

> I searched around a bit more and got OpenS/WAN to get a little further, but
> I'm having new issues now.  I'm running openswan 2.4.0 on AMD64 Ubuntu
> Breezy.  The linux box is being a Zyxell Firewall which has IPSec VPN
> passthrough enabled.  So, when I say "my public ip", I mean the one assigned
> to the firewall, not the linux box itself.  The linux box has a private ip
> 192.168.1.xxx address.

You must disable IPsec passthrough.

> 117 "myconn" #2: STATE_QUICK_I1: initiate
> 010 "myconn" #2: STATE_QUICK_I1: retransmission; will wait 20s for response
> 010 "myconn" #2: STATE_QUICK_I1: retransmission; will wait 40s for response
> 031 ""myconn"" #2: max number of retransmissions (2) reached
> STATE_QUICK_I1.  No acceptable response to our first Quick Mode message:
> perhaps peer likes no proposal

What does the other end say in its logs?


More information about the Users mailing list