[Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"

BUI18 lbui18 at yahoo.com
Fri Apr 11 14:54:38 EDT 2008 

Hi Jacco -  Wanted to get back to you.  Anyway, I thought I would swap out the DIR-130 with a Linksys BEFVP41.  It turns out that the problem appears to be with the DIR-130.  I was able to establish some connectivity using the Linksys (using basically the same configuration on the Openswan server).

It works...99%.  Rrom Linksys side I can ping the Openswan server on it's local network.  From Openswan, I can only ping the router itself but nothing else behind it.

Thanks again for all the help you have provided.


----- Original Message ----
From: BUI18 <lbui18 at yahoo.com>
To: users at openswan.org
Sent: Tuesday, April 8, 2008 3:14:05 PM
Subject: Re: [Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"

Hi Jacco -  Thanks for getting back to me.
 
The only thing I can set on the router is host name.  I can set the host id on the router and then set the rightid on Openswan.  Is that what you mean?
 


 
----- Original Message ----
From: Jacco de Leeuw <jacco2 at dds.nl>
To: users at openswan.org
Sent: Tuesday, April 8, 2008 2:18:55 PM
Subject: Re: [Openswan Users] Error: "initial Main Mode message received on 192.168.23.23:500 but no connection has been authorized"


BUI18 wrote:

> *Apr 8 12:08:56Debug InformationIPSec "conn_IPSec_Tunnel" #47: we
> require peer to have ID '66.27.a.b', but peer declares '192.168.23.23'*

The problem is, PSKs and NAT don't really mix well. I don't know, can
you get away with leftid=@66.27.a.b on Openswan?

Since the Dlink appears to be running FreeS/WAN, is there an option in
the GUI to add something which ends up as rightid=@someidentifier in its
config? Then you add leftid=@someidentifier on Openswan as well.

Or does the Dlink support certificates?

Jacco
-- 
Jacco de Leeuw                        mailto:jacco2 at dds.nl
Zaandam, The Netherlands          http://www.jacco2.dds.nl
_______________________________________________
Users at openswan.org
http://lists.openswan.org/mailman/listinfo/users
Building and Integrating Virtual Private Networks with Openswan: 
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155





      You rock. That's why Blockbuster's offering you one month of Blockbuster Total Access, No Cost.




__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080411/00d81967/attachment.html

More information about the Users mailing list