[Openswan Users] Interpreting "no connection is known" (FreeSwan 1.97)
Patrick Naubert
patrickn at xelerance.com
Fri Jun 7 12:07:22 UTC 2013
Rescued from the Spam bucket. Please remember to subscribe to the mailing list before posting to it.
From: Justin Love <mail at JustinLove.name>
Subject: Interpreting "no connection is known" (FreeSwan 1.97)
Date: 3 June, 2013 12:22:42 PM EDT
To: users at lists.openswan.org
I have someone who was using a cellular network adapter in modem mode, and is now switching to one that runs in either wifi or ethernet over USB. Unfortunately, the laptop can no longer connect to the FreeSwan based L2TP server.
The error message is
cannot respond to IPsec SA request because no connection is known for 111.111.111.111:4500:17/1701...
222.222.222.222:55936[@laptop.our.windows.domain]:17/1701===0
ipsec status says that the connection is defined as
111.111.111.111---111.111.111.1...%any
Do I have to configure something to account for the gateway?
I've spent hours in years past trying to debug the same message trying to connect with my own computer (OS X), going through my local router, and I gave up. I never got completely clear on how the ascii art corresponds to the config files or how to change things to make it match.
config setup
interfaces = %defaultroute
X-enabled = yes
klipsdebug = none
plutodebug = none
plutoload = %search
plutostart = %search
manualstart =
uniqueids = yes
conn BobsConnection
type = tunnel
left = %defaultroute
x-interface = %defaultroute
right = 0.0.0.0
auto = add
keyexchange = ike
authby = secret
auth = esp
pfs = no
pfsgroup = MODP1024
ike = "3DES-SHA-MODP1024"
esp = "3DES-SHA1"
keyingtries = 0
ikelifetime = 3600
keylife = 3600
rekeymargin = 600
rekeyfuzz = 100%
x-l2tpd = yes
--
Justin Love -- http://JustinLove.name/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20130607/7e22815a/attachment.html>
More information about the Users
mailing list