From: Sam Sgro (sam_at_freeswan.org)
Date: Fri Jan 10 2003 - 18:10:40 CET
-----BEGIN PGP SIGNED MESSAGE-----
On Thu, 9 Jan 2003, Richard Jackson wrote:
> A simple question ... does anybody have any experience of using Free S/wan
> 1.99 (or 1.96 1.98b) with Firewall-1 NG Feature Pack 1 ?
>
> We are getting this from our /var/log/secure log file :-
>
> "Jan 9 11:06:52 localhost pluto[5227]: added connection description
> "sample"
> Jan 9 11:06:56 localhost pluto[5227]: "sample" #1: initiating Main Mode
> Jan 9 11:06:56 localhost pluto[5227]: "sample" #1: ignoring informational
> payload, type NO_PROPOSAL_CHOSEN
We've made our IKE proposals to the Firewall-1 NG Feature Pack 1, but they
don't consider any to be acceptable. Check its logs for the error. Common
setting to check: Perfect Forward Secrecy ("pfs=yes/no" in ipsec.conf), Diffie
Hellman group (we offer groups 2 and 5), Hash (MD5 or SHA1)...
- --
Sam Sgro
sam_at_freeswan.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.
iQCVAwUBPh7+kkOSC4btEQUtAQGEDQP9GygAdLIyGRDQ8p9kQk5wu7JqIKx7lqoV
LaS8/Mtxy+uRhYThf5bJjaI9OpJYYqBBXoTdFe7yRt0PI9Jyc3AMUeoIp7WSCOXH
oz9EHosqsxykzGCjSHo6enNxXeI2aVQayKiDXxttOY2DCl2NiCb8u7DngYAXoDaZ
89ZGvH5iZFk=
=i3/+
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Sat Jan 11 2003 - 05:21:14 CET