[Openswan Users] Ipsec VPN from windows machines

Marco Berizzi pupilla at hotmail.com
Thu Apr 3 06:42:12 EDT 2008


Agent Smith wrote:

> as you can see from it, the first client connects in
> fine but as soon as second one comes in from the same
> NAT box, it fails.

mhhhh your log says something else:

> Apr  2 22:41:05 med-idxgtw pluto[5378]: "CERT"[3]
> xx.xx.xx.xx #3: Virtual IP xx.xx.xx.xx/32 is already
> used by 'C=US, ST=Michigan, L=Detroit, O=Wayne State
> University, OU=MSIS, CN=userauth2,

it appears that you haven't the two boxes behind the
same nat (I cannot say nothing because you hidden the
ip addresses):

> Apr  2 22:41:05 med-idxgtw pluto[5378]: "CERT"[3]
> xx.xx.xx.xx #3: cannot respond to IPsec SA request
> because no connection is known for x.x.x.x[C=US,
> ST=Michigan, L=Detroit, O=Wayne State University,
> OU=MSIS, CN=servercert,

but two boxes with the same private ip address from
two different nat device, which of course cannot
work.
May you post you ipsec.conf?




More information about the Users mailing list