From: Emiliano (emiliano_at_climafin.com.ar)
Date: Fri Jan 10 2003 - 18:38:55 CET
Hello, im using freeswan to connect 2 linux boxes : static ip linux -----
internet ---- dynamic ip linux
I run:
ipsec auto --verbose --up lintolin
And shows:
002 "lintolin" #1: initiating Main Mode
104 "lintolin" #1: STATE_MAIN_I1: initiate
002 "lintolin" #1: ERROR: asynchronous network error report on eth1 for
message to 200.X.X.X port 500, complainant 200.X.X.X: Connection refused
[errno 111, origin ICMP type 3 code 3 (not authenticated)]
Could you help me ?..
Thanks, Emiliano.
BTW: iptables ports udp 500 are open!
Here is mi ipsec.conf
# basic configuration
config setup
# THIS SETTING MUST BE CORRECT or almost nothing will work;
# %defaultroute is okay for most simple cases.
interfaces=%defaultroute
# Debug-logging controls: "none" for (almost) none, "all" for lots.
klipsdebug=none
plutodebug=none
# Use auto= parameters in conn descriptions to control startup
actions.
plutoload=%search
plutostart=%search
# Close down old connection when new one using same ID shows up.
uniqueids=yes
# defaults for subsequent connection descriptions
# (these defaults will soon go away)
conn %default
keyingtries=0
disablearrivalcheck=no
authby=rsasig
conn lintolin
left=200.X.X.X <--- dinamic
leftsubnet=13.0.0.0/8
leftnexthop=
right=200.Y.Y.Y <---- static ip
rightsubnet=15.0.0.0/8
rightnexthop=
auto=add
authby=rsasig
leftid=@gs1...
rightid=@gs2..
rightrsasigkey=0s....
leftrsasigkey=0s...
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Sun Jan 12 2003 - 05:21:07 CET