Colegas, Fiz as configurações em dois micros para testar o funcionamento da VPN, porém quando tento conectar, apresenta as seguintes mensagem:
Quando mando Reinicar o serviço ou Iniciar, o mesmo levanta sem problema, isso nos dois micros [EMAIL PROTECTED] etc]# service ipsec restart ipsec_setup: Stopping FreeS/WAN IPsec... ipsec_setup: Starting FreeS/WAN IPsec 2.04... Quando mando conectar, ocorre a mensagem abaixo, também nos dois micros [EMAIL PROTECTED] etc]# ipsec auto --up santarem 104 "santarem" #1: STATE_MAIN_I1: initiate 106 "santarem" #1: STATE_MAIN_I2: sent MI2, expecting MR2 003 "santarem" #1: unable to locate my private key for RSA Signature 224 "santarem" #1: STATE_MAIN_I2: AUTHENTICATION_FAILED 003 "santarem" #1: unable to locate my private key for RSA Signature 224 "santarem" #1: STATE_MAIN_I2: AUTHENTICATION_FAILED 010 "santarem" #1: STATE_MAIN_I2: retransmission; will wait 20s for response 010 "santarem" #1: STATE_MAIN_I2: retransmission; will wait 40s for response 003 "santarem" #1: unable to locate my private key for RSA Signature 224 "santarem" #1: STATE_MAIN_I2: AUTHENTICATION_FAILED 031 "santarem" #1: max number of retransmissions (2) reached STATE_MAIN_I2 000 "santarem" #1: starting keying attempt 2 of an unlimited number, but releasing whack Veja o log abaixo no messeger - nos dois micros [EMAIL PROTECTED] etc]# tail -f /var/log/messages Feb 4 14:57:25 ns1inter ipsec_setup: Stopping FreeS/WAN IPsec... Feb 4 14:57:27 ns1inter ipsec_setup: ...FreeS/WAN IPsec stopped Feb 4 14:57:28 ns1inter ipsec_setup: Starting FreeS/WAN IPsec 2.04... Feb 4 14:57:28 ns1inter ipsec_setup: KLIPS ipsec0 on eth1 200.140.116.3/255.255.255.248 broadcast 200.140.116.255 Feb 4 14:57:29 ns1inter ipsec_setup: ...FreeS/WAN IPsec started Feb 4 14:57:37 ns1inter ipsec__plutorun: 003 "/etc/ipsec.secrets" line 14: malformed end of RSA private key -- indented '}' required Feb 4 14:57:37 ns1inter ipsec__plutorun: 003 ERROR "/etc/ipsec.secrets" line 14: index "}" illegal (non-DNS-name) character in name Feb 4 14:57:37 ns1inter ipsec__plutorun: 003 "/etc/ipsec.secrets" line 14: unexpected end of id list Feb 4 15:01:01 ns1inter crond(pam_unix)[7160]: session opened for user root by (uid=0) Feb 4 15:01:01 ns1inter crond(pam_unix)[7160]: session closed for user root [EMAIL PROTECTED] etc]# tail -f /var/log/secure - nos dois micros Feb 4 15:02:04 ns1inter pluto[6942]: "santarem" #8: discarding duplicate packet; already STATE_MAIN_R2 Feb 4 15:02:19 ns1inter pluto[6942]: "santarem" #7: max number of retransmissions (2) reached STATE_MAIN_I2 Feb 4 15:02:19 ns1inter pluto[6942]: "santarem" #7: starting keying attempt 5 of an unlimited number Feb 4 15:02:19 ns1inter pluto[6942]: "santarem" #9: initiating Main Mode to replace #7 Feb 4 15:02:19 ns1inter pluto[6942]: "santarem" #9: unable to locate my private key for RSA Signature Feb 4 15:02:29 ns1inter pluto[6942]: "santarem" #9: unable to locate my private key for RSA Signature Feb 4 15:02:44 ns1inter pluto[6942]: "santarem" #8: max number of retransmissions (2) reached STATE_MAIN_R2 Feb 4 15:02:45 ns1inter pluto[6942]: "santarem" #10: responding to Main Mode Feb 4 15:02:49 ns1inter pluto[6942]: "santarem" #9: unable to locate my private key for RSA Signature Feb 4 15:02:54 ns1inter pluto[6942]: "santarem" #10: discarding duplicate packet; already STATE_MAIN_R2 Alguém tem idéia do que pode ser isso??? E a primeira vez que estou tentando motar uma vpn. Agradeço toda ajuda. Use e abuse de sua LIBERDADE - Use LINUX __________________ Eduardo Alvarenga Cuiabá/MT --------------------------------------------------------------------- Esta lista é EXCLUSIVAMENTE destinada aos assuntos servidores Linux e clientes Linux em rede. Quem insistir em não seguir esta regra será moderado ou terá o envio de msg suspenso sem prévio aviso. --------------------------------------------------------------------- Soluções Clássicas: http://br.groups.yahoo.com/group/servux/links/Mensagens_001047609003/ --------------------------------------------------------------------- Esta lista é moderada de acordo com o previsto em http://www.listas-discussao.cjb.net --------------------------------------------------------------------- Servidor Newsgroup da lista: news.gmane.org Grupo: gmane.org.user-groups.linux.brazil.servux Links do Yahoo! Grupos <*> Para visitar o site do seu grupo na web, acesse: http://br.groups.yahoo.com/group/servux/ <*> Para sair deste grupo, envie um e-mail para: [EMAIL PROTECTED] <*> O uso que você faz do Yahoo! Grupos está sujeito aos: http://br.yahoo.com/info/utos.html
