Re: IPSEC tunnel
- From: Luc MAIGNAN <luc.maignan@xxxxxxxxxxxx>
- Date: Thu, 16 Dec 2010 19:47:12 +0100
I succeed to pass phase1 but not phase2.
* Any idea ?
* Can a Linux-based IPSEC tunnel can really contact a NETASQ router ?
Here is my logs :
Dec 16 19:28:43 Fedora-64-2 racoon: INFO: IPsec-SA request for 8x.xxx.xx.xx queued due to no phase1 found.
Dec 16 19:28:43 Fedora-64-2 racoon: INFO: initiate new phase 1 negotiation: 192.168.50.181<=>8x.xxx.xx.xx
Dec 16 19:28:43 Fedora-64-2 racoon: INFO: begin Aggressive mode.
Dec 16 19:28:43 Fedora-64-2 racoon: INFO: received Vendor ID: DPD
Dec 16 19:28:43 Fedora-64-2 racoon: NOTIFY: couldn't find the proper pskey, try to get one by the peer's address.
Dec 16 19:28:43 Fedora-64-2 racoon: INFO: ISAKMP-SA established 192.168.50.181-8x.xxx.xx.xx spi:d246d525eb2367b9:370a599c26588a34
Dec 16 19:28:44 Fedora-64-2 racoon: INFO: initiate new phase 2 negotiation: 192.168.50.181<=>8x.xxx.xx.x
Dec 16 19:29:14 Fedora-64-2 racoon: INFO: IPsec-SA expired: AH/Transport 8x.xxx.xx.xx->192.168.50.181 spi=72170590(0x44d3c5e)
Dec 16 19:29:14 Fedora-64-2 racoon: WARNING: the expire message is received but the handler has not been established.
Dec 16 19:29:14 Fedora-64-2 racoon: INFO: IPsec-SA expired: ESP/Transport 8x.xxx.xx.xx->192.168.50.181 spi=75860073(0x4858869)
ANY help would be appreciated
Le 10/12/10 17:41, Kevin Fenzi a écrit :
On Fri, 10 Dec 2010 10:09:10 +0100
Luc MAIGNAN<luc.maignan@xxxxxxxxxxxx> wrote:
one more time...
I have to setup a VPN IPSEC tunnel between a linux machine and a
physical router. The security mode of the router is 'IKE using
I cannot use openVPN because the router isn't compliant with.
I want so use openSwan to setup the IPSEC tunnel.
Am I right ?
How to configure the pre-shared key with openswan ?
users mailing list
To unsubscribe or change subscription options:
- Prev by Date: Re: About programing, a general question
- Next by Date: Re: Security ?
- Previous by thread: Re: IPSEC tunnel
- Next by thread: Fedora 14 : Display is dim and gloomy