[ previous ] [ next ] [ threads ]
 From:  "Chris Nottingham" <chris at thewebgeek dot com>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  m0n0 to cisco point to point ipsec
 Date:  Fri, 4 Mar 2005 16:43:03 -0500
I searched through the archive the best I could before posting, but am
still stuck.  I am trying to get my m0n0wall (1.1 generic pc) to talk to
a cisco ipsec vpn at work.  I got the settings from my friendly network
administrator, and we have tried a few changes both on the m0n0 and
cisco end to no avail.  The log on my end always looks like pasted
below.  Does anyone have a working m0n0 to cisco setup and are willing
to share the configuration from both ends?

Thanks in advance,

racoon: ERROR: pfkey.c:804:pfkey_timeover(): xxx.xxx.xxx.xxx give up to
get IPsec-SA due to time up to wait. 
racoon: ERROR: isakmp_inf.c:840:isakmp_info_recv_n(): unknown notify
message, no phase2 handle found. 
racoon: INFO: isakmp.c:952:isakmp_ph2begin_i(): initiate new phase 2
negotiation: xxx.xxx.xxx.xxx[0]<=>xxx.xxx.xxx.xxx[0] 
racoon: INFO: isakmp.c:2459:log_ph1established(): ISAKMP-SA established
xxx.xxx.xxx.xxx[500]-xxx.xxx.xxx.xxx[500] spi:blahblahblah 
racoon: INFO: isakmp.c:813:isakmp_ph1begin_i(): begin Identity
Protection mode. 
racoon: INFO: isakmp.c:808:isakmp_ph1begin_i(): initiate new phase 1
negotiation: xxx.xxx.xxx.xxx[500]<=>xxx.xxx.xxx.xxx[500]