problema e ca nici phase1 nu merge.... cand dau un ping din linux imi zice ca "connect: Resource temporarily unavailable" iar racoon-ul zice ca
2004-06-15 15:53:18: DEBUG: encription(des) 2004-06-15 15:53:18: DEBUG: with key: 2004-06-15 15:53:18: DEBUG: b386ebbf ade01b20 2004-06-15 15:53:18: DEBUG: encrypted payload by IV: 2004-06-15 15:53:18: DEBUG: cae175b7 d6032106 2004-06-15 15:53:18: DEBUG: save IV for next: 2004-06-15 15:53:18: DEBUG: fc609eb0 6b11c848 2004-06-15 15:53:18: DEBUG: encrypted. 2004-06-15 15:53:18: DEBUG: 68 bytes from 192.168.3.13[500] to 192.168.3.200[500] 2004-06-15 15:53:18: DEBUG: sockname 192.168.3.13[500] 2004-06-15 15:53:18: DEBUG: send packet from 192.168.3.13[500] 2004-06-15 15:53:18: DEBUG: send packet to 192.168.3.200[500] 2004-06-15 15:53:18: DEBUG: src4 192.168.3.13[500] 2004-06-15 15:53:18: DEBUG: dst4 192.168.3.200[500] 2004-06-15 15:53:18: DEBUG: 1 times of 68 bytes message will be sent to 192.168.3.13[500] 2004-06-15 15:53:18: DEBUG: a78cfbb2 0fda96cb 34dc8bc8 21e96304 05100201 00000000 00000044 a4a7e489 249338b7 654e595d 13e058c1 7544a3c0 984c1ffd 3e49e05c 03ff2505 fc609eb0 6b11c848 2004-06-15 15:53:18: DEBUG: resend phase1 packet a78cfbb20fda96cb:34dc8bc821e96304 2004-06-15 15:53:38: DEBUG: 68 bytes from 192.168.3.13[500] to 192.168.3.200[500] 2004-06-15 15:53:38: DEBUG: sockname 192.168.3.13[500] 2004-06-15 15:53:38: DEBUG: send packet from 192.168.3.13[500] 2004-06-15 15:53:38: DEBUG: send packet to 192.168.3.200[500] 2004-06-15 15:53:38: DEBUG: src4 192.168.3.13[500] 2004-06-15 15:53:38: DEBUG: dst4 192.168.3.200[500] 2004-06-15 15:53:38: DEBUG: 1 times of 68 bytes message will be sent to 192.168.3.13[500] 2004-06-15 15:53:38: DEBUG: a78cfbb2 0fda96cb 34dc8bc8 21e96304 05100201 00000000 00000044 a4a7e489249338b7 654e595d 13e058c1 7544a3c0 984c1ffd 3e49e05c 03ff2505 fc609eb06b11c848 2004-06-15 15:53:38: DEBUG: resend phase1 packet a78cfbb20fda96cb:34dc8bc821e96304 2004-06-15 15:53:48: ERROR: phase2 negotiation failed due to time up waiting for phase1. ESP 192.168.3.200->192.168.3.13 2004-06-15 15:53:48: INFO: delete phase 2 handler. pe ruter nu am nimic in loguri cand dau ping din ruter... cateodata nu zice nimic pe linux .. si in logurile lu ruteru' zice ca 15 15:23:26 3 ISAK IKMP XCHG Exchange 115: Phase 1 [init] started with peer 192.168.3.13 15 15:23:26 3 ISAK IKMP XCHG Exchange 115: Payload malformed 15 15:23:26 3 ISAK IKMP XCHG Exchange 115: Failed any idea ? Cosmin. Cristian Mitrana wrote: >Cosmin Codita wrote: > > >>salutare >>a reusit careva sa pupe un allied telesyn ar410 cu un linux prin ipsec? >>linuxul are 2.6.6, si ipsec de kernel (nu freeswan) si cu ipsec-tools. >>incerc deoacamdata doar des si preshared keys... >>ca idee.. zice ca: >> >>racoon: 2004-06-14 16:34:34: INFO: respond new phase 1 negotiation: >>192.168.3.13[500]<=>192.168.3.200[500] >>racoon: 2004-06-14 16:34:34: INFO: begin Identity Protection mode. >>racoon: 2004-06-14 16:34:34: WARNING: ignore INITIAL-CONTACT >>notification, because it is only accepted after phase1. >>racoon: 2004-06-14 16:34:34: INFO: ISAKMP-SA established >>192.168.3.13[500]-192.168.3.200[500] spi:432a367bfbb3bef6:cfaeb7... >> >> > >Daca merge phase1, vezi ca la phase2 sa ai algoritmi de criptare >compatibili. De asemenea sa ai aceeasi politica de securitate >pe ambele masini (ESP/AH, tunel/transport mode). Pune in >/etc/racoon/racoon.conf: >log debug2 ; >si uita-te bine in logul pe care il obtii. > > > >>si o tine tot asa la fiecare pachetel... plus ca nu am reusit sa fac >>linuxul sa initializeze conexiunea (care oricum nu merge), adica el >>pleaca tot prin ip normal >> >> > >Daca nu ai pus "/require" in /etc/ipsec.conf (sau unde ai pus SPD-ul) >atunci asta e normal. > >mitu > >--- >Detalii despre listele noastre de mail: http://www.lug.ro/ > > > > > --- Detalii despre listele noastre de mail: http://www.lug.ro/
