[Users] IPSec, ping failed from win2k to linux with WLAN

From: af15_at_gmx.de
Date: Fri Aug 16 2002 - 15:24:32 CEST

Hi,
I can't ping from win2k to linux via IPSec.
Linux computer: FreeS/WAN 1.9.1 including X.509 patch (Version 0.9.2), IP
192.168.1.4
Win2k computer: installed strong encryption patch, IP 192.168.1.5

The network is realized with WLAN AccessPoint on Linux computer and
WLAN-card on Win2k:

Linux (192.168.1.4) ===cable=== AP (192.168.0.4) ---WLAN--- Win2000
(192.168.1.5)

Without IPSec I can open a connection.

ipsec.conf on Linux computer:

config setup
        interfaces="ipsec0=eth0"
        klipsdebug=all #none
        plutodebug=all #none
        plutoload=
        plutostart=
        uniqueids=yes

# defaults for subsequent connection descriptions
conn %default
        keyingtries=0

conn win2k
        left=192.168.1.4
        right=192.168.1.5
        type=transport
        pfs=yes
        auth=exp
        auto=add

ipsec.secrets on Linux computer:
192.168.1.5 192.168.1.5 "mysecret"

On Win2k computer I changed the IP "Security Policies" with mmc. After
starting freeswan on linux and refresh of ipsec-service I ping from win2k to linux
but 100% packet failed.

On Linux computer I see the following output from 'ipsec barf':

Aug 16 13:49:41 linux Pluto[5397]: Starting Pluto (FreeS/WAN Version 1.91)
Aug 16 13:49:41 linux Pluto[5397]: including X.509 patch (Version 0.9.2)
Aug 16 13:49:41 linux Pluto[5397]: Changing to directory
'/etc/ipsec.d/cacerts'
Aug 16 13:49:41 linux Pluto[5397]: Warning: empty directory
Aug 16 13:49:41 linux Pluto[5397]: Changing to directory '/etc/ipsec.d/crls'
Aug 16 13:49:41 linux Pluto[5397]: Warning: empty directory
Aug 16 13:49:41 linux Pluto[5397]: X.509 certificate file
'/etc/x509cert.der' not found
Aug 16 13:49:41 linux Pluto[5397]: OpenPGP certificate file
'/etc/pgpcert.pgp' not found
Aug 16 13:49:41 linux Pluto[5397]: | opening /dev/urandom
Aug 16 13:49:41 linux Pluto[5397]: | inserting event EVENT_REINIT_SECRET,
timeout in 3600 seconds
Aug 16 13:49:41 linux Pluto[5397]: | process 5397 listening for PF_KEY_V2 on
file descriptor 6
Aug 16 13:49:41 linux Pluto[5397]: | finish_pfkey_msg: SADB_REGISTER message
1 for AH
Aug 16 13:49:41 linux Pluto[5397]: | 02 07 00 02 02 00 00 00 01 00 00 00
 15 15 00 00
Aug 16 13:49:41 linux Pluto[5397]: | pfkey_get: SADB_REGISTER message 1
Aug 16 13:49:41 linux Pluto[5397]: | AH registered with kernel.
Aug 16 13:49:41 linux Pluto[5397]: | finish_pfkey_msg: SADB_REGISTER message
2 for ESP
Aug 16 13:49:41 linux Pluto[5397]: | 02 07 00 03 02 00 00 00 02 00 00 00
 15 15 00 00
Aug 16 13:49:41 linux Pluto[5397]: | pfkey_get: SADB_REGISTER message 2
Aug 16 13:49:41 linux Pluto[5397]: | ESP registered with kernel.
Aug 16 13:49:41 linux Pluto[5397]: | finish_pfkey_msg: SADB_REGISTER message
3 for IPCOMP
Aug 16 13:49:41 linux Pluto[5397]: | 02 07 00 0a 02 00 00 00 03 00 00 00
 15 15 00 00
Aug 16 13:49:41 linux Pluto[5397]: | pfkey_get: SADB_REGISTER message 3
Aug 16 13:49:41 linux Pluto[5397]: | IPCOMP registered with kernel.
Aug 16 13:49:41 linux Pluto[5397]: | finish_pfkey_msg: SADB_REGISTER message
4 for IPIP
Aug 16 13:49:41 linux Pluto[5397]: | 02 07 00 09 02 00 00 00 04 00 00 00
 15 15 00 00
Aug 16 13:49:41 linux Pluto[5397]: | pfkey_get: SADB_REGISTER message 4
Aug 16 13:49:41 linux Pluto[5397]: | IPIP registered with kernel.
Aug 16 13:49:41 linux Pluto[5397]: | inserting event EVENT_SHUNT_SCAN,
timeout in 120 seconds
Aug 16 13:49:41 linux Pluto[5397]: | next event EVENT_SHUNT_SCAN in 120
seconds
Aug 16 13:49:41 linux Pluto[5397]: |
Aug 16 13:49:41 linux Pluto[5397]: | *received whack message
Aug 16 13:49:41 linux Pluto[5397]: listening for IKE messages
Aug 16 13:49:41 linux Pluto[5397]: | found lo with address 127.0.0.1
Aug 16 13:49:41 linux Pluto[5397]: | found eth0 with address 192.168.1.4
Aug 16 13:49:41 linux Pluto[5397]: | found ipsec0 with address 192.168.1.4
Aug 16 13:49:41 linux Pluto[5397]: adding interface ipsec0/eth0 192.168.1.4
Aug 16 13:49:41 linux Pluto[5397]: | IP interface lo 127.0.0.1 has no
matching ipsec* interface -- ignored
Aug 16 13:49:41 linux Pluto[5397]: | found lo with address
0000:0000:0000:0000:0000:0000:0000:0001
Aug 16 13:49:41 linux Pluto[5397]: | found ipsec0 with address
fe80:0000:0000:0000:02e0:7dff:fed3:9d03
Aug 16 13:49:41 linux Pluto[5397]: | found eth0 with address
fe80:0000:0000:0000:02e0:7dff:fed3:9d03
Aug 16 13:49:41 linux Pluto[5397]: adding interface ipsec0/eth0
fe80::2e0:7dff:fed3:9d03
Aug 16 13:49:41 linux Pluto[5397]: | IP interface lo ::1 has no matching
ipsec* interface -- ignored
Aug 16 13:49:41 linux Pluto[5397]: loading secrets from "/etc/ipsec.secrets"
Aug 16 13:49:41 linux Pluto[5397]: | next event EVENT_SHUNT_SCAN in 120
seconds
Aug 16 13:49:47 linux Pluto[5397]: |
Aug 16 13:49:47 linux Pluto[5397]: | *received whack message
Aug 16 13:49:47 linux Pluto[5397]: | next event EVENT_SHUNT_SCAN in 114
seconds
Aug 16 13:50:39 linux Pluto[5397]: |
Aug 16 13:50:39 linux Pluto[5397]: | *received 56 bytes from 192.168.1.5:500
on eth0
Aug 16 13:50:39 linux Pluto[5397]: | 40 38 eb 24 d9 e9 6e d6 00 00 00 00
 00 00 00 00
Aug 16 13:50:39 linux Pluto[5397]: | 0c 10 05 00 10 4b 75 13 00 00 00 38
 00 00 00 1c
Aug 16 13:50:39 linux Pluto[5397]: | 00 00 00 01 01 10 00 01 40 38 eb 24
 d9 e9 6e d6
Aug 16 13:50:39 linux Pluto[5397]: | 00 00 00 00 00 00 00 00
Aug 16 13:50:39 linux Pluto[5397]: | **parse ISAKMP Message:
Aug 16 13:50:39 linux Pluto[5397]: | initiator cookie:
Aug 16 13:50:39 linux Pluto[5397]: | 40 38 eb 24 d9 e9 6e d6
Aug 16 13:50:39 linux Pluto[5397]: | responder cookie:
Aug 16 13:50:39 linux Pluto[5397]: | 00 00 00 00 00 00 00 00
Aug 16 13:50:39 linux Pluto[5397]: | next payload type: ISAKMP_NEXT_D
Aug 16 13:50:39 linux Pluto[5397]: | ISAKMP version: ISAKMP Version 1.0
Aug 16 13:50:39 linux Pluto[5397]: | exchange type: ISAKMP_XCHG_INFO
Aug 16 13:50:39 linux Pluto[5397]: | flags: none
Aug 16 13:50:39 linux Pluto[5397]: | message ID: 10 4b 75 13
Aug 16 13:50:39 linux Pluto[5397]: | length: 56
Aug 16 13:50:39 linux Pluto[5397]: | ICOOKIE: 40 38 eb 24 d9 e9 6e d6
Aug 16 13:50:39 linux Pluto[5397]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 16 13:50:39 linux Pluto[5397]: | peer: c0 a8 01 05
Aug 16 13:50:39 linux Pluto[5397]: | state hash entry 27
Aug 16 13:50:39 linux Pluto[5397]: | state object not found
Aug 16 13:50:39 linux Pluto[5397]: | ***parse ISAKMP Delete Payload:
Aug 16 13:50:39 linux Pluto[5397]: | next payload type: ISAKMP_NEXT_NONE
Aug 16 13:50:39 linux Pluto[5397]: | length: 28
Aug 16 13:50:39 linux Pluto[5397]: | DOI: ISAKMP_DOI_IPSEC
Aug 16 13:50:39 linux Pluto[5397]: | protocol ID: 1
Aug 16 13:50:39 linux Pluto[5397]: | SPI size: 16
Aug 16 13:50:39 linux Pluto[5397]: | number of SPIs: 1
Aug 16 13:50:39 linux Pluto[5397]: packet from 192.168.1.5:500: ignoring
Delete SA payload
Aug 16 13:50:39 linux Pluto[5397]: | del: 40 38 eb 24 d9 e9 6e d6 00 00
00 00 00 00 00 00
Aug 16 13:50:39 linux Pluto[5397]: packet from 192.168.1.5:500: received and
ignored informational message
Aug 16 13:50:39 linux Pluto[5397]: | next event EVENT_SHUNT_SCAN in 62
seconds
Aug 16 13:50:54 linux Pluto[5397]: |
Aug 16 13:50:54 linux Pluto[5397]: | *received whack message
Aug 16 13:50:54 linux Pluto[5397]: | next event EVENT_SHUNT_SCAN in 47
seconds
Aug 16 13:51:41 linux Pluto[5397]: |
Aug 16 13:51:41 linux Pluto[5397]: | *time to handle event
Aug 16 13:51:41 linux Pluto[5397]: | event after this is EVENT_REINIT_SECRET
in 3480 seconds
Aug 16 13:51:41 linux Pluto[5397]: | inserting event EVENT_SHUNT_SCAN,
timeout in 120 seconds
Aug 16 13:51:41 linux Pluto[5397]: | next event EVENT_SHUNT_SCAN in 120
seconds
Aug 16 13:53:26 linux Pluto[5397]: |
Aug 16 13:53:26 linux Pluto[5397]: | *received whack message
Aug 16 13:53:26 linux Pluto[5397]: | next event EVENT_SHUNT_SCAN in 15
seconds

ANY ideas are welcome.

best regards

Andre 

-- 
GMX - Die Kommunikationsplattform im Internet.
http://www.gmx.net

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

This archive was generated by hypermail 2.1.4 : Fri Aug 16 2002 - 18:19:45 CEST