(linux-br) PROBLEMAS COM A VPN

Fabio_Martins Wed, 01 Aug 2001 06:46:11 -0700
Ol� Lista estou tendo dificuldades com o seguinte item, na hora que eu
starto meu IPsec, ele me da as seguintes mensagens:

ipsec_setup: Starting FreeS/WAN IPsec 1.9...
ipsec_setup: WARNING: ipsec0 has route filtering turned on, KLIPS may not
work
ipsec_setup: ipsec_auto: fatal error in "sample": connection has no
"leftrsasigkey" parameter specified
ipsec_setup: 021 no connection with that name

EU ESTOU USANDO O CL 6.0 COM O IPSEC 1.9, EST� TUDO NOVO, OU SEJA, EU
ACABEI DE INSTALAR O CL E O FREESWAN, IMAGINO QUE N�O SEJA PROBLEMAS COM O
KERNEL

MEU SCRIPTS "IPSEC.CONF" E "IPSEC.SECRETS" S�O OS SEGUINTES

IPSEC.SECRETS

-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
           # RSA 1024 bits   aluno02.goffice   Wed Aug  1 08:20:37 2001
           # for signatures only, UNSAFE FOR ENCRYPTION

#pubkey=0x010363bf4d0cf8fcd142ddc8ea85eabd95fcbe4fe08b0f09f1ae8cf1e13c4f14f868527f9bb1a4e6ddc3d5e105d0d55e59e132d45567adbea38b9c83446aa5da2125fcfd4ff1e8709a68e1febb5eb2ba128c5c4d368f90b3950eb789e0fed071f7a817b6d936a473e4880d1e3ffa50cbc3462db6d159b1cabf9d797374acf95756db

           #IN KEY 0x4200 4 1
AQNjv00M+PzRQt3I6oXqvZX8vk/giw8J8a6M8eE8TxT4aFJ/m7Gk5t3D1eEF0NVeWeEy1FVnrb6ji5yDRGql2iEl/P1P8ehwmmjh/rtesroSjFxNNo+Qs5UOt4ng/tBx96gXttk2pHPkiA0eP/pQy8NGLbbRWbHKv515c3Ss+VdW2w

=
           # (0x4200 = auth-only host-level, 4 = IPSec, 1 = RSA)
           Modulus:
0x63bf4d0cf8fcd142ddc8ea85eabd95fcbe4fe08b0f09f1ae8cf1e13c4f14f868527f9bb1a4e6ddc3d5e105d0d55e59e132d45567adbea38b9c83446aa5da2125fcfd4ff1e8709a68e1febb5eb2ba128c5c4d368f90b3950eb789e0fed071f7a817b6d936a473e4880d1e3ffa50cbc3462db6d159b1cabf9d797374acf95756db

           PublicExponent: 0x03
           # everything after this point is secret
           PrivateExponent:
0x109fe22cd42a22e07a4c271651ca43aa1fb7fac1d7d6fd9d177da58a0d2e2966b86a99f2f0d124f5f8fad64d78e50efaddce0e3bf24a709744c08b671ba45adb7440881c2330e5afa66c3b175bfc8c41fc4903392afe890ff108a162fb84246fc3feeef4d3c449e15c0da3722ab4ed2cf4c04c7b4b1f68abb63160abe0ea0eeb

           Prime1:
0xbab82f2b3c492c6bfbbb979aa7a3af77a0f25056ac596431aa9a292af5ddacfac406a47267cbba90b64f10082fa433ed92442385dfde495a961e927276e19d9b

           Prime2:
0x88c1f01dd9020bdeffb9c137e32b1988d1a4d2e1e262fa7d66bbef81f57b700ebbb69b07460e6eaf2e7d5b4520ea004adef0e2f00f30023c9e2c9e333cf95fc1

           Exponent1:
0x7c7aca1cd2db72f2a7d26511c517ca4fc0a18ae472e642cbc71170c74e93c8a72d59c2f6efdd270b2434b55aca6d77f3b6d817ae953edb91b969b6f6f9ebbe67

           Exponent2:
0x5b2bf5693b56b294aa7bd625421cbbb08bc33741419751a8ef27f5014e524ab47d24675a2eb449ca1efe3cd8c09c0031e9f5eca00a20017dbec869777dfb952b

           Coefficient:
0x467e9cdc5bc57ecaddbf60820c8b01f989853f8cea5f7e352e0ad08af2454dfb50d36ad07bfd7bf166fa979f6392a2a8f76463d01490b9c096cd00077830a21f
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

IPSEC.CONF

-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
# /etc/ipsec.conf - FreeS/WAN IPsec configuration file

# More elaborate and more varied sample configurations can be found
# in FreeS/WAN's doc/examples file.



# basic configuration
config setup
           # THIS SETTING MUST BE CORRECT or almost nothing will work;
           # %defaultroute is okay for most simple cases.
           interfaces=%defaultroute
           # Debug-logging controls:  "none" for (almost) none, "all" for
lots.
           klipsdebug=none
           plutodebug=none
           # Use auto= parameters in conn descriptions to control startup
actions.
           plutoload=%search
           plutostart=%search
           # Close down old connection when new one using same ID shows up.
           uniqueids=yes



# defaults for subsequent connection descriptions
conn %default
           # How persistent to be in (re)keying negotiations (0 means
very).
           keyingtries=0
           # Parameters for manual-keying testing (DON'T USE
OPERATIONALLY).
           # Note:  only one test connection at a time can use these
parameters!
           spi=0x200
           esp=3des-md5-96

espenckey=0x01234567_89abcdef_02468ace_13579bdf_12345678_9abcdef0
           espauthkey=0x12345678_9abcdef0_2468ace0_13579bdf
           # RSA authentication with keys from DNS.
           authby=rsasig
           #leftrsasigkey=%dns
           #rightrsasigkey=%dns



# sample connection
conn sample
           # Left security gateway, subnet behind it, next hop toward
right.
           left=192.168.0.20
           leftsubnet=192.168.0.0/24
           leftnexthop=192.168.0.5
           # Right security gateway, subnet behind it, next hop toward
left.
           right=%any
           #rightsubnet=192.168.0.0/24
           #rightnexthop=10.101.102.103
           # To authorize this connection, but not actually start it, at
startup,
           # uncomment this.
           auto=start

-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

Agrade�o desde j� a qualquer ajuda.

Atenciosamente

____________________________________
Fabio Gon�alves Martins
Group Office Consultoria e Assessoria S/C Ltda
e-mail: [EMAIL PROTECTED]
http://www.groupoffice.com.br



Assinantes em 01/08/2001: 2253
Mensagens recebidas desde 07/01/1999: 125712
Historico e [des]cadastramento: http://linux-br.conectiva.com.br
Assuntos administrativos e problemas com a lista:
            mailto:[EMAIL PROTECTED]
(linux-br) PROBLEMAS COM A VPN

Responder a
