[Openswan Users] no connection has been authorized

Alfonso Viso alfonso.viso at selftrade.com
Tue Oct 14 02:50:40 EDT 2008 

Hello, 
we did it and the message is this:
virtual IP must only be used with %any and without client
one question, why can't we use? , we want to set the server only allow the connection from this public_remote. 
now, i get it with the firewalls, but i want to do with the configuration of openswan
can you help us?
thanks 

Alfonso

-----Original Message-----
From: Paul Wouters [mailto:paul at xelerance.com]
Sent: lunes, 13 de octubre de 2008 19:54
To: Alfonso Viso
Cc: users at openswan.org
Subject: Re: [Openswan Users] no connection has been authorized


On Mon, 13 Oct 2008, Alfonso Viso wrote:

> like this, the connection is ok. The problem is when we change the value of right, instead of %any we set right with the public ip of client like this:
> 
> conn roadwarrior
> 	type=tunnel
> 	left=<public_ip_server>
> 	leftcert=????????????????
> 	right=<public_ip_client>
> 	rightsubnet=vhost:%no,%priv
> 	auto=add
> 	pfs=yes
> 
> with this configuration the message error is:
> packet from <public_ip_client>:500: initial Main Mode message received 
> on <public_ip_server>:500 but no connection has been authorized*

Run ipsec auto --add roadwarrior and see whathe error message is,
since your conn does not seem to get laoded for some reason.

Paul


 ___________________________________

Ce message contient des informations confidentielles ou appartenant à
Boursorama et est établi à l'intention exclusive de ses destinataires. Toute
divulgation, utilisation, diffusion ou reproduction (totale ou partielle) de ce
message, ou des informations qu'il contient, doit être préalablement
autorisée. Tout message électronique est susceptible d'altération et son
intégrité ne peut être assurée. Boursorama décline toute responsabilité au
titre de ce message s'il a été modifié ou falsifié. Si vous n'êtes pas
destinataire de ce message, merci de le détruire immédiatement et d'avertir
l'expéditeur de l'erreur de distribution et de la destruction du message.
___________________________________

This e-mail contains confidential information or information belonging to
Boursorama and is intended solely for the addressees. The unauthorised
disclosure, use, dissemination or copying (either whole or partial) of this
e-mail, or any information it contains, is prohibited. E-mails are susceptible
to alteration and their integrity cannot be guaranteed. Boursorama shall not be
liable for this e-mail if modified or falsified. If you are not the intended
recipient of this e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail deletion.
___________________________________

More information about the Users mailing list