[Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"

BUI18 lbui18 at yahoo.com
Tue Apr 8 18:14:05 EDT 2008


Hi Jacco -  Thanks for getting back to me.

The only thing I can set on the router is host name.  I can set the host id on the router and then set the rightid on Openswan.  Is that what you mean?




----- Original Message ----
From: Jacco de Leeuw <jacco2 at dds.nl>
To: users at openswan.org
Sent: Tuesday, April 8, 2008 2:18:55 PM
Subject: Re: [Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"


BUI18 wrote:

> *Apr 8 12:08:56Debug InformationIPSec "conn_IPSec_Tunnel" #47: we
> require peer to have ID '66.27.a.b', but peer declares '192.168.23.23'*

The problem is, PSKs and NAT don't really mix well. I don't know, can
you get away with leftid=@66.27.a.b on Openswan?

Since the Dlink appears to be running FreeS/WAN, is there an option in
the GUI to add something which ends up as rightid=@someidentifier in its
config? Then you add leftid=@someidentifier on Openswan as well.

Or does the Dlink support certificates?

Jacco
-- 
Jacco de Leeuw                        mailto:jacco2 at dds.nl
Zaandam, The Netherlands          http://www.jacco2.dds.nl
_______________________________________________
Users at openswan.org
http://lists.openswan.org/mailman/listinfo/users
Building and Integrating Virtual Private Networks with Openswan: 
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155


      ____________________________________________________________________________________
You rock. That's why Blockbuster's offering you one month of Blockbuster Total Access, No Cost.  
http://tc.deals.yahoo.com/tc/blockbuster/text5.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080408/3939ffeb/attachment.html 


More information about the Users mailing list