[Openswan Users] Intermitent Connection

Pablo García malevo at gmail.com
Thu Jun 29 23:55:58 CEST 2006


Paul, here's a copy of the last lines of the logfile

Jun 29 21:55:09 routertech pluto[3461]: packet from 200.41.49.4:500:
ignoring unknown Vendor ID payload [4048b7d56ebce88525e7de7f00d
6c2d3c0000000]
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: responding to
Main Mode
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: transition from
state STATE_MAIN_R0 to state STATE_MAIN_R1
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: STATE_MAIN_R1:
sent MR1, expecting MI2
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: received Vendor
ID payload [Cisco-Unity]
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: received Vendor
ID payload [XAUTH]
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: ignoring unknown
Vendor ID payload [3d92011605225165afa0a5d009cc099b]
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: ignoring Vendor
ID payload [Cisco VPN 3000 Series]
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: transition from
state STATE_MAIN_R1 to state STATE_MAIN_R2
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: STATE_MAIN_R2:
sent MR2, expecting MI3
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: received Vendor
ID payload [Dead Peer Detection]
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: Main mode peer ID
is ID_IPV4_ADDR: '200.41.49.4'
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: I did not send a
certificate because I do not have one.
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: transition from
state STATE_MAIN_R2 to state STATE_MAIN_R3
Jun 29 21:55:09 routertech pluto[3461]: "tunnelipsec" #18: STATE_MAIN_R3:
sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY
 cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp1024}
Jun 29 21:55:39 routertech pluto[3461]: "tunnelipsec" #17: received Delete
SA payload: deleting ISAKMP State #17
Jun 29 21:55:39 routertech pluto[3461]: packet from 200.41.49.4:500:
received and ignored informational message
Jun 29 22:39:06 routertech sshd[6802]: Did not receive identification string
from 75.22.239.26
Jun 29 22:39:38 routertech pluto[3461]: packet from 200.41.49.4:500:
ignoring unknown Vendor ID payload [4048b7d56ebce88525e7de7f00d
6c2d3c0000000]
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: responding to
Main Mode
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: transition from
state STATE_MAIN_R0 to state STATE_MAIN_R1
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: STATE_MAIN_R1:
sent MR1, expecting MI2
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: received Vendor
ID payload [Cisco-Unity]
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: received Vendor
ID payload [XAUTH]
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: ignoring unknown
Vendor ID payload [12915a0e2017a802aaca7d181b5cb097]
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: ignoring Vendor
ID payload [Cisco VPN 3000 Series]
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: transition from
state STATE_MAIN_R1 to state STATE_MAIN_R2
Jun 29 22:39:38 routertech pluto[3461]: "tunnelipsec" #19: STATE_MAIN_R2:
sent MR2, expecting MI3
Jun 29 22:39:46 routertech pluto[3461]: "tunnelipsec" #19: received Vendor
ID payload [Dead Peer Detection]
Jun 29 22:39:46 routertech pluto[3461]: "tunnelipsec" #19: Main mode peer ID
is ID_IPV4_ADDR: '200.41.49.4'
Jun 29 22:39:46 routertech pluto[3461]: "tunnelipsec" #19: I did not send a
certificate because I do not have one.
Jun 29 22:39:46 routertech pluto[3461]: "tunnelipsec" #19: transition from
state STATE_MAIN_R2 to state STATE_MAIN_R3
Jun 29 22:39:46 routertech pluto[3461]: "tunnelipsec" #19: STATE_MAIN_R3:
sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY
 cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp1024}
Jun 29 22:40:09 routertech pluto[3461]: "tunnelipsec" #18: received Delete
SA payload: deleting ISAKMP State #18
Jun 29 22:40:09 routertech pluto[3461]: packet from 200.41.49.4:500:
received and ignored informational message

Thanks a lot, Pablo

On 6/29/06, Paul Wouters <paul at xelerance.com> wrote:
>
> On Thu, 29 Jun 2006, Pablo García wrote:
>
> > Paul, you're right, the tunnel is stablished but the traffic isn't being
> > encripted, any idea of why ?
>
> I don't think the tunnel is establasished at all. Do you have a log entry
> saying "IPsec SA Established"?
>
> Paul
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20060629/f9446a8d/attachment.htm


More information about the Users mailing list