[Openswan Users] Openswan + Fortigate shared key problem

Paul Wouters paul at xelerance.com
Tue Sep 30 15:21:29 EDT 2008

On Tue, 30 Sep 2008, Marcin J. Kowalczyk wrote:

> I've asked VPN admin to check some settings, and he was blocking my IP. But
> still I cannot setup sesion, now I have following error:

> Sep 30 13:07:21 vpn pluto[6236]: "niemcy" #1: STATE_MAIN_I4: ISAKMP SA
> established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192
> prf=oakley_md5 group=modp1024}

Phase 1 is up

> Sep 30 13:07:21 vpn pluto[6236]: "niemcy" #2: initiating Quick Mode
> PSK+ENCRYPT+TUNNEL+UP {using isakmp#1}
> Sep 30 13:07:21 vpn pluto[6236]: "niemcy" #1: ignoring informational payload,

phase 2 was not in agreement, The other end hung up on you. You need to have
a proper esp= and pfs= line that matches the other end.


More information about the Users mailing list