Hosting Provided By

[Users] cannot respond to IPsec SA request because no connection is known for...

From: nick vdh <nickvdh(at)hotmail.com>
Date: Mon Apr 12 2004 - 12:01:52 EDT

Hello, I almost got my VPN (ipcop - xp) up running now, but I get this error now:

Apr 12 20:30:01 ipcop pluto[20172]: "roadwarrior"[1] 134.58.253.225 #1:

responding to Main Mode from unknown peer 134.58.253.225 Apr 12 20:30:01 ipcop pluto[20172]: "roadwarrior"[1] 134.58.253.225 #1: Peer ID

is ID_IPV4_ADDR: '10.0.57.174'
Apr 12 20:30:01 ipcop pluto[20172]: "roadwarrior"[2] 134.58.253.225 #1:

deleting connection "roadwarrior" instance with peer 134.58.253.225 Apr 12 20:30:01 ipcop pluto[20172]: "roadwarrior"[2] 134.58.253.225 #1: sent

MR3, ISAKMP SA established
Apr 12 20:30:01 ipcop pluto[20172]: "roadwarrior"[2] 134.58.253.225 #1: cannot

respond to IPsec SA request because no connection is known for

192.168.1.0/24===213.119.153.yyy...134.58.253.225[10.0.57.174]===10.0.57.174/32 Apr 12 20:30:01 ipcop pluto[20172]: "roadwarrior"[2] 134.58.253.225 #1: sending

Do you need help?

encrypted notification INVALID_ID_INFORMATION to 134.58.253.225:500 Apr 12 20:30:02 ipcop pluto[20172]: "roadwarrior"[2] 134.58.253.225 #1: Quick

Mode I1 message is unacceptable because it uses a previously used Message ID

0x5555ee32 (perhaps this is a duplicated packet)

i don't understand how i must let the vpn server know how to send packets to

10.0.57.174, this is my situation:

192.168.1.0/24===213.119.153.yyy...internet...134.58.253.225(uni,

nat)===10.0.57.174

(i wonder why the vpn server makes it so difficult to find my ip, all the other internet
traffic seems to have no problem with it...)

Do you need more help?

Here is m ipsec.conf file at my vpn server (213.119.153.yyy):

config setup

        interfaces=%defaultroute
        klipsdebug=none
        plutodebug=none
        plutoload=%search
        plutostart=%search
        uniqueids=yes
        nat_traversal=yes
        virtual_private=%v4:10.0.57.0/24

conn %default
        keyingtries=0

conn roadwarrior
        compress=no
        left=213.119.153.yyy
        leftsubnet=192.168.1.0/24
        leftnexthop=%defaultroute
        type=tunnel
        authby=secret
        pfs=yes
        right=%any
        rightsubnet=10.0.57.0/24
        rightnexthop=%defaultroute
        auto=add

this line is in my ipsec auto --status output: 000 "roadwarrior":
192.168.1.0/24===213.119.153.yyy---213.119.152.1...213.119.152.1---%any===10.0.57.0/24

I don't know if you can do anything with it :)

If you have any suggestions, please let me know, I really appreciate your help,

Greetings,

Nick.

Vraag van de week: Welk soort project zou jij financieel ondersteunen? http://www.msn.be/microsoft/potential/default.asp

FreeS/WAN Users mailing list
users@lists.freeswan.org
https://mj2.freeswan.org/cgi-bin/mj_wwwusr Received on Mon Apr 12 12:08:43 2004

This message: [ Message body ]
Next message: Rodrigo Embeita: "[Users] I can ping between the gateways but i cant ping inside the lan to other hosts"
Previous message: nerdscape(at)gmx.net: "Re: [Users] troubles with routing SOLVED"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 13:02:32 EDT

Can we help you?