[Openswan Users] Linux IPsec client
Jacco de Leeuw
jacco2 at dds.nl
Tue Sep 26 17:59:40 EDT 2006
Xunhua Wang wrote:
> 68.235.168.219:4500 #344: cannot respond to IPsec SA request because no
> connection is known for 134.126.20.79:4500[C=US, ST=Virginia,
> L=Harrisonburg, O=JMU, OU=CS, CN=IPsec VPN Server
> 02]:17/1701...68.235.168.219:4500[C=US, ST=Virginia, L=Harrisonburg, O=JMU,
> OU=CS, CN=Steve Wang]:17/1701===192.168.1.3/32
Do the certificates check out OK? I.e. has the client cert been issued
by the same CA as the server cert? Etc. etc.
You should now get some more info in your client log as well.
Can the client connect when it is not behind NAT? You probably want
to avoid this, but what if you try this briefly, just for testing
purposes?
Jacco
--
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
More information about the Users
mailing list