[Openswan Users] Difficulties
Paul Wouters
paul at xelerance.com
Mon Jun 15 16:48:24 EDT 2009
On Mon, 15 Jun 2009, João Kuchnier wrote:
> I think VPN is estabilshed. Openswan log:
>
> "conn1" #1: STATE_MAIN_I3: sent MI3, expecting MR3
> "conn1" #1: Main mode peer ID is ID_IPV4_ADDR: '200.184.163.4'
> "conn1" #1: transition from state STATE_MAIN_I3 to state STATE_MAIN_I4
> "conn1" #1: STATE_MAIN_I4: ISAKMP SA established
> {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_md5
> group=modp1024}
> "conn2" #2: initiating Quick Mode PSK+ENCRYPT+TUNNEL+UP+IKEv2ALLOW
> {using isakmp#1 msgid:12baf275 proposal=3DES(3)_192-MD5(1)_128
> pfsgroup=no-pfs}
> "conn1" #3: initiating Quick Mode PSK+ENCRYPT+TUNNEL+UP+IKEv2ALLOW
> {using isakmp#1 msgid:136cd5e6 proposal=3DES(3)_192-MD5(1)_128
> pfsgroup=no-pfs}
> "conn2" #2: transition from state STATE_QUICK_I1 to state STATE_QUICK_I2
> "conn2" #2: STATE_QUICK_I2: sent QI2, IPsec SA established tunnel mode
> {ESP=>0x076a6e29 <0xd46295eb xfrm=3DES_0-HMAC_MD5 NATOA=none NATD=none
> DPD=none}
> "conn1" #3: transition from state STATE_QUICK_I1 to state STATE_QUICK_I2
> "conn1" #3: STATE_QUICK_I2: sent QI2, IPsec SA established tunnel mode
> {ESP=>0x05f8a6d9 <0xa2b8414a xfrm=3DES_0-HMAC_MD5 NATOA=none NATD=none
> DPD=none}
Two tunnels are up?
>>
>> What do you mean "it stops here"? Does it hang or return you to the
>> command prompt? I'm not sure what distro you're running this from but
>> you need to provide some logs from /var/log/secure.
>>
>
> The cursor stays locked... and it is still locked...
If you are on Debian and /bin/sh is linked to dash, file a bug report to Debian
or "dash". If not, then I am not sure why the shell is hanging.
Paul
More information about the Users
mailing list