[Openswan Users] Openswan and Netgear SRXN3205
paul at xelerance.com
Thu Aug 27 19:09:19 EDT 2009
On Thu, 27 Aug 2009, JT Edwards wrote:
> 15:17:46 wizzer8 pluto: packet from 184.108.40.206:500: ignoring unknown
> Vendor ID payload [810fa565f8ab14369105d706fbd57279]
> Aug 27 15:17:46 wizzer8 pluto: packet from 220.127.116.11:500: ignoring
> unknown Vendor ID payload [3b9031dce4fcf88b489a923963dd0c49]
> Aug 27 15:17:46 wizzer8 pluto: packet from 18.104.22.168:500: initial
> Aggressive Mode message from 22.214.171.124 but no (wildcard) connection has
> been configured with policy=PSK
> Both sides have the PSK identified
But apparently you do not have aggressive mode enabled and the other end is
asking for it.
> conn net-to-net
> auto=add # authorizes but doesn't start this
> # connection at startup
Do NOT put blanc comment lines in the middle of a secion, it will mean the
section ended. So now your authby=secret is not part of "conn net-to-net".
So remove the "# connection at startup" line.
And add aggrmode=yes as the other end apparently is expecting that.
More information about the Users