[ previous ] [ next ] [ threads ]
 
 From:  Claude Hecker <hecker at ifina dot de>
 To:  prt at teko dot it
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Problem with IPSEC site2site VPN
 Date:  Wed, 15 Feb 2006 13:19:03 +0100 (CET)
hi,

can you show us your racoon.conf settings from both, please!
You can find this on the status.php page

regards
Claude

Am Mi 15.02.2006 10:12 schrieb Paolo Rossi Tiller <prt at teko dot it>:

>Hi,
>
>I have two embedded monowall (soekris), one here in Italy and the
>second
>in Germany.
>2 static IP, of course.
>I have tried to setup a IpSec Vpn beetween the FWs, but it doesn't
>work.
>See the following log (from the bootom):
>--------------------------------------
>Feb 15 09:12:44 racoon: ERROR: failed to pre-process packet.
>Feb 15 09:12:44 racoon: ERROR: failed to get sainfo.
>Feb 15 09:12:44 racoon: ERROR: failed to get sainfo.
>Feb 15 09:12:44 racoon: INFO: respond new phase 2 negotiation:
>81.208.26.190[0]<=>62.245.239.78[0]
>Feb 15 09:12:43 racoon: INFO: ISAKMP-SA established
>81.208.26.190[500]- 62.245.239.78[500]
>spi:af2aa343bf014eac:e9c5a2368b74ed6d
>Feb 15 09:12:42 racoon: NOTIFY: couldn't find the proper pskey, try to
>get
>one by the peer's address.
>Feb 15 09:12:41 racoon: INFO: received Vendor ID: DPD
>Feb 15 09:12:41 racoon: INFO: begin Aggressive mode.
>Feb 15 09:12:41 racoon: INFO: respond new phase 1 negotiation:
>81.208.26.190[500]<=>62.245.239.78[500]
>-------------------------------------------------
>I've made two identical configuration, same phase 1 and 2 proposal.
>Any idea?
>
>Paolo Rossi Tiller
>IT Manager
>Teko Spa
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>