Forums before death by AOL, social media and spammers... "We can't have nice things"
| comp.dcom.vpn | VPN protocols, clients, awesomeness | 2,348 messages |
[ << oldest | < older | list | newer > | newest >> ]
| Message 1,919 of 2,348 |
| Heruan to All |
| Re: OpenSWAN to OpenSWAN problems |
| 16 Feb 06 08:19:00 |
From: heruan83@hotmail.com Heruan ha scritto: > Hi all! > I'm trying to establish a VPN connection between tso OpenSWAN server. > This is the scenario: > > NAT Gateway A --- Server A --- Network A > | > INTERNET > | > NAT Gateway B --- Server B --- Network B > [CUT] > I set nat_trasversal to yes but the same error appear. Both NAT Gateways > support IPSec passthrough and UDP ports 500 and 4550 are both forwarder > to Server A and Server B. I corrected my ipsec.conf that way: conn test left=192.168.1.10 leftsubnet=192.168.1.0/24 leftnexthop=151.38.49.xxx leftrsasigkey=0sAQNe... right=192.168.0.10 rightsubnet=192.168.0.0/24 rightnexthop=82.60.119.xxx rightrsasigkey=0sAQNY... auto=add and now in /var/log/messages I get: ipsec__plutorun: 104 "test" #1: STATE_MAIN_I1: initiate ipsec__plutorun: ...could not start conn "test" If I try a ``ipsec auto --up test'': 104 "test" #1: STATE_MAIN_I1: initiate 010 "test" #1: STATE_MAIN_I1: retransmission; will wait 20s for response 010 "test" #1: STATE_MAIN_I1: retransmission; will wait 40s for response ... and so on. With ``ipsec auto --status'': "test" STATE_MAIN_I1 (sent MI1, expecting MR1); EVENT_RETRANSMIT in 6s pending Phase 2 for "test" replacing #0 pending Phase 2 for "test" replacing #0 So the tunnel fails, I can't get out of this problem... TIA, Heruan --- SoupGate-Win32 v1.05 * Origin: you cannot sedate... all the things you hate (1:229/2) |
(c) 1994, bbs@darkrealms.ca