[Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"
BUI18
lbui18 at yahoo.com
Tue Apr 8 18:14:05 EDT 2008
Hi Jacco - Thanks for getting back to me.
The only thing I can set on the router is host name. I can set the host id on the router and then set the rightid on Openswan. Is that what you mean?
----- Original Message ----
From: Jacco de Leeuw <jacco2 at dds.nl>
To: users at openswan.org
Sent: Tuesday, April 8, 2008 2:18:55 PM
Subject: Re: [Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"
BUI18 wrote:
> *Apr 8 12:08:56Debug InformationIPSec "conn_IPSec_Tunnel" #47: we
> require peer to have ID '66.27.a.b', but peer declares '192.168.23.23'*
The problem is, PSKs and NAT don't really mix well. I don't know, can
you get away with leftid=@66.27.a.b on Openswan?
Since the Dlink appears to be running FreeS/WAN, is there an option in
the GUI to add something which ends up as rightid=@someidentifier in its
config? Then you add leftid=@someidentifier on Openswan as well.
Or does the Dlink support certificates?
Jacco
--
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
_______________________________________________
Users at openswan.org
http://lists.openswan.org/mailman/listinfo/users
Building and Integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
____________________________________________________________________________________
You rock. That's why Blockbuster's offering you one month of Blockbuster Total Access, No Cost.
http://tc.deals.yahoo.com/tc/blockbuster/text5.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080408/3939ffeb/attachment.html
More information about the Users
mailing list