Ubuntu Linux laptop roadwarrior to IPCop VPN 1.4.6
coaxx
ulist at gs1.ubuntuforums.org
Fri Jul 22 11:46:50 UTC 2005
thank U but it does not work for me. I can connect from a Windows Xp
client but not from kubuntu Hoary with openswan installed.
Here are the logs on my VPN Server (ipcop)
Code:
--------------------
ipcop pluto[913]: packet from 192.168.254.198:500: received Vendor ID payload [Dead Peer Detection]
ipcop pluto[913]: "bluevpn" #37: responding to Main Mode
1 ipcop pluto[913]: "bluevpn" #37: transition from state (null) to state STATE_MAIN_R1
ipcop pluto[913]: "bluevpn" #37: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
ipcop pluto[913]: "bluevpn" #37: byte 2 of ISAKMP Identification Payload must be zero, but is not
ipcop pluto[913]: "bluevpn" #37: probable authentication failure (mismatch of preshared secrets?): malformed payload in packet
ipcop pluto[913]: "bluevpn" #37: sending notification PAYLOAD_MALFORMED to 192.168.254.198:500
ipcop pluto[913]: "bluevpn" #37: byte 2 of ISAKMP Identification Payload must be zero, but is not
ipcop pluto[913]: "bluevpn" #37: probable authentication failure (mismatch of preshared secrets?): malformed payload in packet
ipcop pluto[913]: "bluevpn" #37: sending notification PAYLOAD_MALFORMED to 192.168.254.198:500
ipcop pluto[913]: "bluevpn" #37: max number of retransmissions (2) reached STATE_MAIN_R2 [/color]
--------------------
And this is what is shown during connection process in kubuntu (last
message repeats all 20 sec)
Code:
--------------------
uwe at 5200-801:~$ sudo ipsec auto --up localvpn
104 "localvpn" #1: STATE_MAIN_I1: initiate
003 "localvpn" #1: received Vendor ID payload [Dead Peer Detection]
106 "localvpn" #1: STATE_MAIN_I2: sent MI2, expecting MR2
108 "localvpn" #1: STATE_MAIN_I3: sent MI3, expecting MR3
003 "localvpn" #1: discarding duplicate packet; already STATE_MAIN_I3
010 "localvpn" #1: STATE_MAIN_I3: retransmission; will wait 20s for response
--------------------
By trhe way:
this will not work here (complains about incoplete conn config during
ipsec start)
>
> conn block
> auto=ignore
>
> conn private
> auto=ignore
>
> conn private-or-clear
> auto=ignore
>
> conn clear-or-private
> auto=ignore
>
> conn clear
> auto=ignore
>
> conn packetdefault
> auto=ignore
>
--
coaxx
More information about the ubuntu-users
mailing list