[Openswan Users] NAT traversal on Openswan

Thu Aug 30 15:15:37 EDT 2007

On Thu, 30 Aug 2007, Tejas Jin wrote:

> 104 "office" #1: STATE_MAIN_I1: initiate
> 003 "office" #1: received Vendor ID payload [Openswan (this version)
> openswan-2.4.9-31.el4  PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
> 003 "office" #1: received Vendor ID payload [Dead Peer Detection]
> 003 "office" #1: received Vendor ID payload [RFC 3947] method set to=110
> 106 "office" #1: STATE_MAIN_I2: sent MI2, expecting MR2
> 003 "office" #1: NAT-Traversal: Result using RFC 3947 (NAT-Traversal): i
> am NATed
> 108 "office" #1: STATE_MAIN_I3: sent MI3, expecting MR3
> 004 "office" #1: STATE_MAIN_I4: ISAKMP SA established
> {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_md5
> group=modp1536}
> 117 "office" #2: STATE_QUICK_I1: initiate
> 010 "office" #2: STATE_QUICK_I1: retransmission; will wait 20s for response

The other end is silently rejecting you. Check its logs why.

Paul