[users] auto=add problem

• Next message: Jussi Torhonen: "Re: [Users] Creating certificates for SSHSentinel hosts"
• Previous message: D. Hugh Redelmeier: "Re: [Users] ERROR: PF_KEY SADB_X_ADDFLOW response for flow %trap"
• In reply to: Markwalder Philip: "[Users] RaodWarriers: Enhancment of _updown script (routing, firewalling)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello Everyone,

I setup a freeswan gateway using ver1.96 on top of RH Linux 7.2. I'm
using Windows XP's native client(IPsec) to communicate with my IPSec
gateway. In my configuration when I put auto=start it works fine,
but if I put auto=add it does not work. I need my gateway to be passive
about it's connections, because my Win-XP box will be up and down.

  I get this error when I run ipsec
barf:

"vpn-site1" #1: responding to Main Mode
"vpn-site1" #1: sent MR3, ISAKMP SA established
"vpn-site1" #2: cannot respond to IPsec SA request because no connection
is known for 10.10.40.0/24===10.10.20.1...10.10.20.2===10.10.20.0/24

"vpn-site1" #1: Quick Mode I1 message is unacceptable because it uses a
previously used Message ID 0xcc6c28f4 (perhaps this is a duplicated
packet)

I'm not using NAT.

Can anyone shed some light on why this is happening? Both auto=start and
auto=add have the same config just that line is different.

Help,
Andre

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Jussi Torhonen: "Re: [Users] Creating certificates for SSHSentinel hosts"
• Previous message: D. Hugh Redelmeier: "Re: [Users] ERROR: PF_KEY SADB_X_ADDFLOW response for flow %trap"
• In reply to: Markwalder Philip: "[Users] RaodWarriers: Enhancment of _updown script (routing, firewalling)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:42 CEST