[Openswan Users] Linux client connection fails: No acceptable response to Quick Mode message

[Paul Wouters]

On Wed, 17 Jan 2007, Marko Asplund wrote:

> linux-lq5c:/etc/ipsec.d/cacerts # ipsec auto --up acme-vpn
> 104 "acme-vpn" #1: STATE_MAIN_I1: initiate
> 003 "acme-vpn" #1: ignoring unknown Vendor ID payload
> [4f455a7e4261425d725c705f]
> 003 "acme-vpn" #1: received Vendor ID payload [Dead Peer Detection]
> 003 "acme-vpn" #1: received Vendor ID payload [RFC 3947] method set to=110
> 106 "acme-vpn" #1: STATE_MAIN_I2: sent MI2, expecting MR2
> 003 "acme-vpn" #1: NAT-Traversal: Result using 3: i am NATed
> 108 "acme-vpn" #1: STATE_MAIN_I3: sent MI3, expecting MR3
> 004 "acme-vpn" #1: STATE_MAIN_I4: ISAKMP SA established
> {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192 prf=oakley_md5
> group=modp1536}
> 117 "acme-vpn" #2: STATE_QUICK_I1: initiate
> 010 "acme-vpn" #2: STATE_QUICK_I1: retransmission; will wait 20s for response

The other end should have logged why it stopped responding....

> Which software should I use for creating the L2TP tunnel?

You need to fix the IPsec problem before starting on the L2TP level.

Paul