[ previous ] [ next ] [ threads ]
 
 From:  Dana Spiegel <dana at sociableDESIGN dot com>
 To:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  M0n0wall <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] IPSEC VPN problem on 1.1
 Date:  Wed, 25 Aug 2004 21:07:32 -0400 
Thank you.

This has fixed the problem.

Dana Spiegel
sociableDESIGN  ::  www.sociableDESIGN.com
123 Bank Street, Suite 510, New York, NY 10014
m  +1 917 402 0422  ::  f  +1 760 454 3690  ::  
e  dana at sociableDESIGN dot com


On Aug 25, 2004, at 6:49 PM, Chris Buechler wrote:

> On Wed, 25 Aug 2004 16:25:03 -0400, Dana Spiegel
> <dana at sociabledesign dot com> wrote:
>> I'm having trouble getting a site to site vpn up and running. I've
>> followed the instructions in the m0n0wall documentation for 
>> configuring
>> the vpn, but I keep getting the following error on my soekris box 
>> error log:
>>
>> racoon: ERROR: isakmp.c:861:isakmp_ph1begin_r(): couldn't find
>> configuration.
>>
>> My setup is a soekris box on a cable modem (Time warner cable in the 
>> US)
>> connecting to a generic PC (cd-rom based m0n0wall) on a symmetric
>> 1.5mbps DSL line.
>>
>> Here are the two racoon.conf files:
>>
>> Generic PC CD-ROM
>> -----------------------------
>>
>> path pre_shared_key "/var/etc/psk.txt";
>>
>> remote 68.174.123.110 {
>>         exchange_mode aggressive;
>>         my_identifier address "216.220.101.74";
>>         peers_identifier address 68.174.123.110;
>>
>> Soekris
>> ------------
>>
>> remote 216.220.96.17 {
>>         exchange_mode aggressive;
>>         my_identifier address "68.174.123.110";
>>         peers_identifier address 216.220.96.17;
>
>
> Note your my_identifier on the PC and peers_identifier on Soekris
> don't match up.  That seems to be it.
>
> -Chris