> I've been working on this for hours after an already long day, so I'm tired.
> What am I missing here?
>
> 001543.953108 Misc 95 conf_get_str: [ABCD-peer]:ID->ABCD-ID
> 001543.956103 Misc 95 conf_get_str: configuration value not found
> [ABCD-ID]:ID-type
> 001543.959050 Default ipsec_id_size: section ABCD-ID has no "ID-type" tag
> 001543.962081 Default exchange_run: doi->initiator (0x8abf3400) failed
>
> # cat isakmpd.conf
> [Phase 1]
> aaa.bbb.ccc.ddd=ABCD-peer
>
> [Phase 2]
> Connections=ABCD-conn
>
> [ABCD-peer]
> Phase=1
> Transport=udp
> Address=aaa.bbb.ccc.ddd
> Configuration=ABCD-main-mode
> ID=ABCD-ID
> Authentication=xxxxxxxx
>
> [ABCD-ID]
> ID-type=USER_FQDN
> Name=yyyyyyyyyyyyyy
>
> [ABCD-conn]
> Phase=2
> Configuration=ABCD-quick-mode
> ISAKMP-peer=ABCD-peer
> Local-ID=default-route
> Remote-ID=ABCD-net
^^^^^^^^^
OK, you do have the [default route] section below, but the
[ABCD-net] section is called [KLNR-net].
> [default-route]
> ID-type= IPV4_ADDR_SUBNET
> Network= 192.168.123.0
> Netmask= 255.255.255.0
>
> [KLNR-net]
^^^^^^^^^^^^^^^______ This should read [ABCD-net]
> ID-type= IPV4_ADDR_SUBNET
> Network= aaa.bbb.eee.0
> Netmask= 255.255.255.0
>
> [ABCD-main-mode]
> DOI= IPSEC
> EXCHANGE_TYPE= AGGRESSIVE
> Transforms= 3DES-SHA
>
> [ABCD-quick-mode]
> DOI= IPSEC
> EXCHANGE_TYPE= QUICK_MODE
> Suites= QM-ESP-3DES-SHA-SUITE
>
Could this be (part of) the problem? Or was it just a typo?
---
Rob
____________________________________________________________
Libero Flat, sempre a 4 Mega a 19,95 euro al mese!
Abbonati subito su http://www.libero.it
