Woody, FreeSwan and a SonicWall Pro 100
I have been trying to get this working for a long time now, can anyone give me some help? I have even tried the old dpkg -P freeswan and started from scratch a few times. You can see exactly what I type below and the error I get, I attached the log dumb separately to try and keep things neat. The sonic wall is a 30min drive away with no remote access, so I don't have any logs handy from that, but I don't think I'm getting that far ? I've included all the info think may be useful. ###ipsec.secure %any xxx.xxx.25.191 : PSK "notmyrealkey" ###ipsec.conf config setup interfaces="ipsec0=ppp0" klipsdebug=all plutodebug=all plutoload=%search plutostart=%search uniqueids=yes conn iazex type=tunnel auto=add auth=esp authby=secret pfs=yes keyingtries=1 left=%any leftnexthop=10.18.1.1 leftsubnet=192.168.0.0/24 right=xxx.xxx.25.191 rightnexthop=24.52.25.129 rightsubnet=10.0.0.0/24 rightid=xxx.xxx.25.191 esp=3des-hmac-md5 keyexchange=ike # cyberflunky:~# ipsec setup --start ipsec_setup: Starting FreeS/WAN IPsec 1.96... cyberflunky:~# ipsec auto --add iazex cyberflunky:~# ipsec auto --up iazex whack: is Pluto running? connect() for "/var/run/pluto.ctl" failed (111 Connection refused) ### Somehting that has to do with pluto/ipsec is running cyberflunky:~#ps aux root 23741 0.0 0.1 2044 944 pts/4S02:59 0:00 /bin/bash /usr/lib/ipsec/_plutorun --re --debug all --uniqueids yes --dump --load %search --st root 23742 0.0 0.0 1244 392 pts/4S02:59 0:00 logger -p daemon.error -t ipsec__plutorun root 23743 0.0 0.1 2044 944 pts/4S02:59 0:00 /bin/bash /usr/lib/ipsec/_plutorun --re --debug all --uniqueids yes --dump --load %search --st root 23744 0.0 0.1 2040 948 pts/4S02:59 0:00 /bin/sh /usr/lib/ipsec/_plutoload --load %search --start %search --wait --post root 23746 0.0 0.1 1872 768 pts/4S02:59 0:00 /usr/lib/ipsec/pluto --nofork --debug-all --uniqueids cyberflunky:~# cat /proc/version Linux version 2.4.17 ([EMAIL PROTECTED]) (gcc version 2.95.4 20011002 (Debian prerelease)) #1 Sun Jun 8 19:15:24 EDT 2003 # cyberflunky:~# ifconfig eth0 Link encap:Ethernet HWaddr 00:E0:7D:F1:4C:40 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:12389 errors:0 dropped:0 overruns:0 frame:0 TX packets:8685 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:12710901 (12.1 MiB) TX bytes:813361 (794.2 KiB) Interrupt:10 Base address:0x1000 eth1 Link encap:Ethernet HWaddr 00:30:1B:09:E9:E1 inet addr:192.168.0.100 Bcast:192.168.0.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:37970 errors:0 dropped:0 overruns:0 frame:0 TX packets:41791 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:7159732 (6.8 MiB) TX bytes:23853795 (22.7 MiB) Interrupt:11 Base address:0x3000 ipsec0Link encap:Point-to-Point Protocol inet addr:xxx.xxx.12.74 Mask:255.255.255.255 UP RUNNING NOARP MTU:16260 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:10 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b) loLink encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:5034 errors:0 dropped:0 overruns:0 frame:0 TX packets:5034 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:387345 (378.2 KiB) TX bytes:387345 (378.2 KiB) ppp0 Link encap:Point-to-Point Protocol inet addr:xxx.xxx.12.74 P-t-P:10.18.1.1 Mask:255.255.255.255 UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1492 Metric:1 RX packets:5319 errors:0 dropped:0 overruns:0 frame:0 TX packets:3043 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:3 RX bytes:6971717 (6.6 MiB) TX bytes:174508 (170.4 KiB) ## cyberflunky:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 10.18.1.1 * 255.255.255.255 UH0 0 0 ppp0 10.18.1.1 * 255.255.255.255 UH0 0 0 ipsec0 192.168.0.0 * 255.255.255.0 U 0 0 0 eth1 default 10.18.1.1 0.0.0.0 UG0 0 0 ppp0 0 Jun 10 02:59:11 cyberflunky kernel: klips_debug:pfkey_x_debug_process: set Jun 10 02:59:11 cyberflunky kernel: klips_debug:pfkey_msg_interp: parsing message type 16 with msg_parser c0271810. Jun 10 02:59:11 cyberflunky kernel: klips_debug:pfkey_x_msg_debug_parse: . Jun 10 02:
Woody, FreeSwan and a SonicWall Pro 100
I have been trying to get this working for a long time now, can anyone give me some help? I have even tried the old dpkg -P freeswan and started from scratch a few times. You can see exactly what I type below and the error I get, I attached the log dumb separately to try and keep things neat. The sonic wall is a 30min drive away with no remote access, so I don't have any logs handy from that, but I don't think I'm getting that far ? I've included all the info think may be useful. ###ipsec.secure %any xxx.xxx.25.191 : PSK "notmyrealkey" ###ipsec.conf config setup interfaces="ipsec0=ppp0" klipsdebug=all plutodebug=all plutoload=%search plutostart=%search uniqueids=yes conn iazex type=tunnel auto=add auth=esp authby=secret pfs=yes keyingtries=1 left=%any leftnexthop=10.18.1.1 leftsubnet=192.168.0.0/24 right=xxx.xxx.25.191 rightnexthop=24.52.25.129 rightsubnet=10.0.0.0/24 rightid=xxx.xxx.25.191 esp=3des-hmac-md5 keyexchange=ike # cyberflunky:~# ipsec setup --start ipsec_setup: Starting FreeS/WAN IPsec 1.96... cyberflunky:~# ipsec auto --add iazex cyberflunky:~# ipsec auto --up iazex whack: is Pluto running? connect() for "/var/run/pluto.ctl" failed (111 Connection refused) ### Somehting that has to do with pluto/ipsec is running cyberflunky:~#ps aux root 23741 0.0 0.1 2044 944 pts/4S02:59 0:00 /bin/bash /usr/lib/ipsec/_plutorun --re --debug all --uniqueids yes --dump --load %search --st root 23742 0.0 0.0 1244 392 pts/4S02:59 0:00 logger -p daemon.error -t ipsec__plutorun root 23743 0.0 0.1 2044 944 pts/4S02:59 0:00 /bin/bash /usr/lib/ipsec/_plutorun --re --debug all --uniqueids yes --dump --load %search --st root 23744 0.0 0.1 2040 948 pts/4S02:59 0:00 /bin/sh /usr/lib/ipsec/_plutoload --load %search --start %search --wait --post root 23746 0.0 0.1 1872 768 pts/4S02:59 0:00 /usr/lib/ipsec/pluto --nofork --debug-all --uniqueids cyberflunky:~# cat /proc/version Linux version 2.4.17 ([EMAIL PROTECTED]) (gcc version 2.95.4 20011002 (Debian prerelease)) #1 Sun Jun 8 19:15:24 EDT 2003 # cyberflunky:~# ifconfig eth0 Link encap:Ethernet HWaddr 00:E0:7D:F1:4C:40 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:12389 errors:0 dropped:0 overruns:0 frame:0 TX packets:8685 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:12710901 (12.1 MiB) TX bytes:813361 (794.2 KiB) Interrupt:10 Base address:0x1000 eth1 Link encap:Ethernet HWaddr 00:30:1B:09:E9:E1 inet addr:192.168.0.100 Bcast:192.168.0.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:37970 errors:0 dropped:0 overruns:0 frame:0 TX packets:41791 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:7159732 (6.8 MiB) TX bytes:23853795 (22.7 MiB) Interrupt:11 Base address:0x3000 ipsec0Link encap:Point-to-Point Protocol inet addr:xxx.xxx.12.74 Mask:255.255.255.255 UP RUNNING NOARP MTU:16260 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:10 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b) loLink encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:5034 errors:0 dropped:0 overruns:0 frame:0 TX packets:5034 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:387345 (378.2 KiB) TX bytes:387345 (378.2 KiB) ppp0 Link encap:Point-to-Point Protocol inet addr:xxx.xxx.12.74 P-t-P:10.18.1.1 Mask:255.255.255.255 UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1492 Metric:1 RX packets:5319 errors:0 dropped:0 overruns:0 frame:0 TX packets:3043 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:3 RX bytes:6971717 (6.6 MiB) TX bytes:174508 (170.4 KiB) ## cyberflunky:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 10.18.1.1 * 255.255.255.255 UH0 0 0 ppp0 10.18.1.1 * 255.255.255.255 UH0 0 0 ipsec0 192.168.0.0 * 255.255.255.0 U 0 0 0 eth1 default 10.18.1.1 0.0.0.0 UG0 0 0 ppp0 0 Jun 10 02:59:11 cyberflunky kernel: klips_debug:pfkey_x_debug_process: set Jun 10 02:59:11 cyberflunky kernel: klips_debug:pfkey_msg_interp: parsing message type 16 with msg_parser c0271810. Jun 10 02:59:11 cyberflunky kernel: klips_debug:pfkey_x_msg_debug_parse: . Jun 10 02