[Openswan Users] cannot respond to IPsec SA request because no connection is known for

Sebastian McDonagh openswan at agbnielsen.com.au
Tue Jan 29 17:49:02 EST 2008

Thanks for the reply Jacco

I have gone through and tried as you suggested, i have removed the leftsubnet 
line and paid more attention to my left and right settings and confirmed that 
im not mixing them up :)

You are correct the client, i am trying to configure as a road warrior type 
setup as i have to get a roadwarrior setup working for 120 clients.  After 
that comes the 30 tunnel setup *sigh*

One thing to note though is when i try to connect through a windows xp client 
l2tp not natted i get the same error message.

I have put the ipsec barf from the firewall at the following url.


Thanks for looking at this, and if anyone else has any ideas or suggestions 
they would be greatfully received.



On Wed, 30 Jan 2008 07:00:17 am Jacco de Leeuw wrote:
> > The vpn server is on a static ip, and the "roadwarrior" is behind a
> > Billion adsl router.
> > Jan 29 10:50:01 AUSSVFW0106 pluto[14396]: "roadwarrior"[2]
> > #2: cannot respond to IPsec SA request because no
> > connection is known for[C=XX, ST=XXX, O=XXXXXX,
> > CN=aussvfw0106.agbnielsen.com.au]...[C=AU, ST=XXX,
> >
> > and the ipsec.conf on the client machine is as follows.
> >
> > conn roadwarrior
> >       left=
> >       leftsubnet=

More information about the Users mailing list