[Users] Help in network with two adsl connection

From: Andre Margis (andre_at_sam.com.br)
Date: Wed Aug 21 2002 - 23:37:54 CEST

• Next message: Whit Blauvelt: "[Users] iptables SNAT - what rules for FreeS/WAN?"
• Previous message: DvdDra: "[Users] A new website"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,

I have two connections to internet via ADSL, (USR 8550 ADSL) and I like to
create a tunnel between this connections.

Network A:
      Server has two network cards:

      eth0: 192.168.200.55/24 (Internal Network)
      eth1: 192.168.0.254/254

      ADSL: 192.168.0.1/24 - eth
                   200.203.43.149 /32- ppp

Network B:
           Server has two network cards:

      eth0: 192.168.13.21/24 (Internal Network)
      eth1: 192.168.1.254/254

      ADSL: 192.168.1.1/24 - eth
                   200.163.191.31/32 - ppp

Server A:
ipsec.conf
# /etc/ipsec.conf - FreeS/WAN IPSEC configuration file

# More elaborate and more varied sample configurations can be found
# in FreeS/WAN's doc/examples file.

# basic configuration
config setup
        # THIS SETTING MUST BE CORRECT or almost nothing will work;
        # %defaultroute is okay for most simple cases.
        interfaces=%defaultroute
        klipsdebug=none
        plutodebug=none
        plutoload=%search
        plutostart=%search

# defaults for subsequent connection descriptions
conn %default
        keyingtries=0

conn tunnel-lpb
        left=%defaultroute
        leftsubnet=192.168.200.0/24
        leftnexthop=
        right=200.163.191.31
        rightsubnet=192.168.13.0/24
        rightnexthop=
        auto=start
        authby=secret
           
ipsec.secrets
#
# CREATE YOUR OWN SECRETS FILE
# A SAMPLE IS IN THE /usr/doc/freeswan-1.5 DIRECTORY
# FILE secrets.eg
#

: PSK "teste"

Server B:
ipsec.conf
# /etc/ipsec.conf - FreeS/WAN IPSEC configuration file

# More elaborate and more varied sample configurations can be found
# in FreeS/WAN's doc/examples file.

# basic configuration
config setup
        # THIS SETTING MUST BE CORRECT or almost nothing will work;
        # %defaultroute is okay for most simple cases.
        #interfaces=%defaultroute
        interfaces=%defaultroute
        klipsdebug=none
        plutodebug=none
        plutoload=%search
        plutostart=%search

# defaults for subsequent connection descriptions
conn %default
        keyingtries=0

conn tunnel-lpb
        left=200.203.43.149
        leftsubnet=192.168.200.0/24
        leftnexthop=
        right=%defaultroute
        rightsubnet=192.168.13.0/24
        rightnexthop=
        auto=start
        authby=secret

ipsec.secrets
#
# CREATE YOUR OWN SECRETS FILE
# A SAMPLE IS IN THE /usr/doc/freeswan-1.5 DIRECTORY
# FILE secrets.eg
#

: PSK "teste"

My problems is when I start the connections I receive the messages in log
file secure on Server AAug 21 18:10:07 tunnel Pluto[23634]: Starting Pluto
(FreeS/WAN Version 1.5)
Aug 21 18:10:08 tunnel Pluto[23634]: added connection description "tunnel-lpb"
Aug 21 18:10:08 tunnel Pluto[23634]: listening for IKE messages
Aug 21 18:10:08 tunnel Pluto[23634]: adding interface ipsec0/eth1
192.168.0.254
Aug 21 18:10:08 tunnel Pluto[23634]: loading secrets from "/etc/ipsec.secrets"
Aug 21 18:10:08 tunnel Pluto[23634]: "tunnel-lpb" #1: initiating Main Mode
Aug 21 18:10:32 tunnel Pluto[23634]: "tunnel-lpb" #2: responding to Main Mode
Aug 21 18:10:32 tunnel Pluto[23634]: "tunnel-lpb" #2: no suitable connection
for peer '192.168.1.254'
Aug 21 18:10:42 tunnel Pluto[23634]: "tunnel-lpb" #2: no suitable connection
for peer '192.168.1.254'
Aug 21 18:10:49 tunnel Pluto[23634]: "tunnel-lpb" #1: discarding duplicate
packet; already STATE_MAIN_I3
Aug 21 18:11:00 tunnel Pluto[23634]: shutting down
Aug 21 18:11:00 tunnel Pluto[23634]: forgetting secrets
Aug 21 18:11:00 tunnel Pluto[23634]: "tunnel-lpb": deleting connection
Aug 21 18:11:00 tunnel Pluto[23634]: "tunnel-lpb" #1: deleting state
(STATE_MAIN_I3)
Aug 21 18:11:00 tunnel Pluto[23634]: "tunnel-lpb" #2: deleting state
(STATE_MAIN_R2)
Aug 21 18:11:00 tunnel Pluto[23634]: shutting down interface ipsec0/eth1
192.168.0.254

And in the server B:

Aug 18 19:28:30 loja Pluto[2582]: Starting Pluto (FreeS/WAN Version 1.5)
Aug 18 19:28:33 loja Pluto[2582]: added connection description "tunnel-lpb"
Aug 18 19:28:33 loja Pluto[2582]: listening for IKE messages
Aug 18 19:28:33 loja Pluto[2582]: adding interface ipsec0/eth1 192.168.1.254
Aug 18 19:28:33 loja Pluto[2582]: loading secrets from "/etc/ipsec.secrets"
Aug 18 19:28:35 loja Pluto[2582]: "tunnel-lpb" #1: initiating Main Mode
Aug 18 19:28:42 loja Pluto[2582]: "tunnel-lpb" #2: responding to Main Mode
Aug 18 19:28:42 loja Pluto[2582]: "tunnel-lpb" #2: no suitable connection for
peer '192.168.0.254'
Aug 18 19:28:45 loja Pluto[2582]: "tunnel-lpb" #1: discarding duplicate
packet; already STATE_MAIN_I3
Aug 18 19:28:52 loja Pluto[2582]: "tunnel-lpb" #2: no suitable connection for
peer '192.168.0.254'
Aug 18 19:29:09 loja Pluto[2582]: shutting down
Aug 18 19:29:09 loja Pluto[2582]: forgetting secrets
Aug 18 19:29:09 loja Pluto[2582]: "tunnel-lpb": deleting connection
Aug 18 19:29:09 loja Pluto[2582]: "tunnel-lpb" #2: deleting state
(STATE_MAIN_R2)
Aug 18 19:29:09 loja Pluto[2582]: "tunnel-lpb" #1: deleting state
(STATE_MAIN_I3)
Aug 18 19:29:09 loja Pluto[2582]: shutting down interface ipsec0/eth1
192.168.1.254

My FreeSwan Version is 1.5

Thank's for any help

Andre
     
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Whit Blauvelt: "[Users] iptables SNAT - what rules for FreeS/WAN?"
• Previous message: DvdDra: "[Users] A new website"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Aug 23 2002 - 01:20:14 CEST