Hi Andreas, I don't know if the WRV200 is running freeswan or openswan. We use the newest US-version of the linksys firmware 1.0.32.2 from 2.5.2007.
Another problem is in accessing the vpn-Gateway itself with ssh for instance, I get a freezing windows, whenever I tranfer more than just a few bytes. I can type my login-name and my password, then get a prompt ... but if I call, let's say, mc, or so, it stops working after a few seconds - just hangs. Is this the mss-clamp-problem ? Philipp Andreas Steffen schrieb: > Hi Philipp, > > it seems that the strongSwan box does not even answer now. > Do you see any connection attempts in the strongSwan log? > > Andreas > > BTW - is the Linksys router running a FreeS/WAN or Openswan clone? > > Philipp Rusch wrote: >> Hi Andreas, >> >> this is a harder thing than I thought ... >> >> - switched to AES256 on both sides now >> - plutodebug=all >> - Log from Linksys-Router: >> 002 [Thu 16:18:21] added connection description "TunnelA" >> 003 [Thu 16:18:21] "TunnelA" #92: initiating Main Mode >> 004 [Thu 16:18:21] "TunnelA" #92: [WRV200 Response:] ISAKMP SA >> (Main Mode) Initiation >> 005 [Thu 16:19:31] "TunnelA" #92: [WRV200 Response:] Remote peer >> has no tunnel entry to correspond to this tunnel. >> 006 [Thu 16:19:31] "TunnelA" #92: [WRV200 Response:] Please check >> your Remote Secure Gateway setting. >> 007 [Thu 16:19:31] "TunnelA" #92: max number of retransmissions >> (2) reached STATE_MAIN_I1. No response (or no acceptable response) >> to our first IKE message >> 008 [Thu 16:19:31] "TunnelA" #92: starting keying attempt 2 of at >> most 5, but releasing whack >> 009 [Thu 16:19:31] "TunnelA" #93: initiating Main Mode to replace #92 >> >> Firewall is stopped at the moment for easier testing. >> >> Philipp > > > ====================================================================== > Andreas Steffen [EMAIL PROTECTED] > strongSwan - the Linux VPN Solution! www.strongswan.org > Institute of Internet Technologies and Applications > University of Applied Sciences Rapperswil > CH-8640 Rapperswil (Switzerland) > ===========================================================[ITA-HSR]== ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
