[ previous ] [ next ] [ threads ]
 
 From:  "Scott M. Day" <SCOTTD at WELDONOWEN dot COM>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  m0n0 IPSEC Issues
 Date:  Wed, 1 Feb 2006 08:34:06 -0800 
Feb 1 08:14:32 	racoon: ERROR: failed to pre-process packet.
Feb 1 08:14:32 	racoon: ERROR: failed to get proposal for responder.
Feb 1 08:14:32 	racoon: ERROR: no policy found: 10.10.0.0/16[0]  
192.168.168.0/24[0] proto=any dir=in
Feb 1 08:14:32 	racoon: INFO: respond new phase 2 negotiation:  
69.17.50.2[0]<=>66.92.184.208[0]
Feb 1 08:14:22 	racoon: ERROR: failed to pre-process packet.
Feb 1 08:14:22 	racoon: ERROR: failed to get proposal for responder.
Feb 1 08:14:22 	racoon: ERROR: no policy found: 10.10.0.0/16[0]  
192.168.168.0/24[0] proto=any dir=in
Feb 1 08:14:22 	racoon: INFO: respond new phase 2 negotiation:  
69.17.50.2[0]<=>66.92.184.208[0]
Feb 1 08:14:08 	racoon: ERROR: failed to pre-process packet.
Feb 1 08:14:08 	racoon: ERROR: failed to get proposal for responder.
Feb 1 08:14:08 	racoon: ERROR: no policy found: 10.10.0.0/16[0]  
192.168.168.0/24[0] proto=any dir=in
Feb 1 08:14:08 	racoon: INFO: respond new phase 2 negotiation:  
69.17.50.2[0]<=>66.92.184.208[0]
Feb 1 08:13:58 	racoon: ERROR: failed to pre-process packet.
Feb 1 08:13:58 	racoon: ERROR: failed to get proposal for responder.
Feb 1 08:13:58 	racoon: ERROR: no policy found: 10.10.0.0/16[0]  
192.168.168.0/24[0] proto=any dir=in


Error from the home firewall (just started a simple ping to an office  
IP to get the error output):

Feb 1 08:14:21 	racoon: INFO: initiate new phase 2 negotiation:  
6.2.14.208[0]<=>9.1.5.2[0]
Feb 1 08:14:18 	racoon: ERROR: 9.1.5.2 give up to get IPsec-SA due to  
time up to wait.
Feb 1 08:13:48 	racoon: INFO: initiate new phase 2 negotiation:  
6.2.14.208[0]<=>9.1.5.2[0]
Feb 1 08:13:44 	racoon: ERROR: 9.1.5.2 give up to get IPsec-SA due to  
time up to wait.
Feb 1 08:13:14 	racoon: INFO: initiate new phase 2 negotiation:  
6.2.14.208[0]<=>9.1.5.2[0]
Feb 1 08:13:11 	racoon: ERROR: 9.1.5.2 give up to get IPsec-SA due to  
time up to wait.
Feb 1 08:12:41 	racoon: INFO: initiate new phase 2 negotiation:  
6.2.14.208[0]<=>9.1.5.2[0]
Feb 1 08:12:38 	racoon: ERROR: 9.1.5.2 give up to get IPsec-SA due to  
time up to wait.
Feb 1 08:12:08 	racoon: INFO: initiate new phase 2 negotiation:  
6.2.14.208[0]<=>9.1.5.2[0]
Feb 1 08:12:05 	racoon: ERROR: 9.1.5.2 give up to get IPsec-SA due to  
time up to wait.
Feb 1 08:11:35 	racoon: INFO: initiate new phase 2 negotiation:  
6.2.14.208[0]<=>9.1.5.2[0]
Feb 1 08:11:31 	racoon: ERROR: 9.1.5.2 give up to get IPsec-SA due to  
time up to wait.
Feb 1 08:11:01 	racoon: INFO: initiate new phase 2 negotiation:  
6.2.14.208[0]<=>9.1.5.2[0]
Feb 1 08:10:57 	racoon: ERROR: 9.1.5.2 give up to get IPsec-SA due to  
time up to wait.
Feb 1 08:10:27 	racoon: INFO: initiate new phase 2 negotiation:  
6.2.14.208[0]<=>9.1.5.2[0]

Any information, even a tiny morsel would be so welcome so I can  
proof of concept m0n0 and deploy this cause I am really keen on m0n0  
and want to stay away from Smoothwall if I can.

Regards,
-Scott