[Openswan Users] Openswan + Fortigate shared key problem
Paul Wouters
paul at xelerance.com
Tue Sep 30 15:21:29 EDT 2008
On Tue, 30 Sep 2008, Marcin J. Kowalczyk wrote:
> I've asked VPN admin to check some settings, and he was blocking my IP. But
> still I cannot setup sesion, now I have following error:
> Sep 30 13:07:21 vpn pluto[6236]: "niemcy" #1: STATE_MAIN_I4: ISAKMP SA
> established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192
> prf=oakley_md5 group=modp1024}
Phase 1 is up
> Sep 30 13:07:21 vpn pluto[6236]: "niemcy" #2: initiating Quick Mode
> PSK+ENCRYPT+TUNNEL+UP {using isakmp#1}
> Sep 30 13:07:21 vpn pluto[6236]: "niemcy" #1: ignoring informational payload,
> type NO_PROPOSAL_CHOSEN
phase 2 was not in agreement, The other end hung up on you. You need to have
a proper esp= and pfs= line that matches the other end.
Paul
More information about the Users
mailing list