[Openswan Users] Phase I completed,but Phase II error
李正光
xjklee at gmail.com
Wed Oct 10 23:30:33 EDT 2007
Dear all:
my client box openswan is 2.4.9 version which runs on arm linux 2.4.19.
the server log is as follows:
2007-10-11 09:55:49 system info 00536 IKE<61.30.115.91> Phase 2 msg ID
<1870a061>: Responded to the peer's first message from user
<CN=IPSEC,OU=Support,O=Dawningtech,L=Taipei,ST=Taiwan,C=TW>.
2007-10-11 09:55:34 system info 00536 IKE<61.30.115.91> Phase 2 msg ID
<1ec5c04a>: Responded to the peer's first message from user
<CN=IPSEC,OU=Support,O=Dawningtech,L=Taipei,ST=Taiwan,C=TW>.
2007-10-11 09:54:58 system info 00536 IKE<61.30.115.91> Phase 2 msg ID
<1ec5c04a>: Responded to the peer's first message from user
<CN=IPSEC,OU=Support,O=Dawningtech,L=Taipei,ST=Taiwan,C=TW>.
2007-10-11 09:54:45 system info 00536 IKE<61.30.115.91> Phase 1:
Completed Main mode negotiations with a <28800>-second lifetime.
2007-10-11 09:54:45 system info 00536 IKE<61.30.115.91> Phase 1:
Completed for user
<CN=IPSEC,OU=Support,O=Dawningtech,L=Taipei,ST=Taiwan,C=TW>.
----------------------------------------------------------------------------------------------------------------------------------------------------------------------
what happened with the client ?
Can anyone give me a suggestion?
my ipsec.conf is
config setup
# Debug-logging controls: "none" for (almost) none, "all" for lots.
klipsdebug=all
plutodebug=all
nat_traversal=yes
interfaces="%defaultroute"
include /etc/ipsec.d/no_oe.conf
conn dawn-net
authby=rsasig
esp=3DES-SHA1
left=%defaultroute
leftsubnet=192.168.1.0/24
leftnexthop=%defaultroute
leftcert=/etc/ipsec.d/mycert2.pem
leftrsasigkey=%cert
right=211.78.84.93
rightid="@SSG550.sti.com.tw"
rightsubnet=10.2.111.0/24
rightnexthop=%defaultroute
auto=add
pfs=no
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20071011/bcbb20f1/attachment.html
More information about the Users
mailing list