ru.linux

 
 - RU.LINUX ---------------------------------------------------------------------
 From : Pavel L.L.                           2:5020/400     01 Nov 2004  23:45:51
 To : All
 Subject : IPsec D-link DI-804HV - linux-box with racoon troubles
 -------------------------------------------------------------------------------- 
 

 Кто-нибудь подымал сабжевый туннель? Есть вопросы ...
 Вроде все по букварю сделал верно -  не работает
 
 RH9 ядро 2.6.8.1 ipsec-tools-0.3.3-1
 Share secret based tunnel (железка X.509 сертификаты не умеет)
 
 === DI-804HV config begin
 = IKE Proposal =
 DH Group : Group2
 Encrypt Algorithm : 3DES 
 Auth Algorithm : SHA1
 Life Time : 3600
 = IPSec Proposal =
 DH Group : Group2
 Encap protocol : ESP
 Encrypt Algorithm : 3DES 
 Auth Algorithm : SHA1
 === DI-804HV config end
 
 === racoon.conf begin
 listen
 {
     isakmp 10.3.18.80 [500];
 }
 sainfo anonymous
 {
         pfs_group 2;
         lifetime time 1 hour ;
         encryption_algorithm 3des, blowfish 448, rijndael ;
         authentication_algorithm hmac_sha1, hmac_md5 ;
         compression_algorithm deflate ;
 }
 remote anonymous
 {
     exchange_mode aggressive,main;
     doi ipsec_doi;
     situation identity_only;
     my_identifier address;
     lifetime time 2 min;
     initial_contact on;
     proposal_check obey;
     proposal {
         encryption_algorithm 3des;
         hash_algorithm sha1;
         authentication_method pre_shared_key;
         dh_group 2 ;
     }
 }
 === racoon.conf end
 
 === racoon.log begin
 DEBUG: anonymous configuration selected for 10.3.18.78[500].
 DEBUG: new cookie:
 DEBUG: 40 bytes from 10.3.18.80[500] to 10.3.18.78[500]
 DEBUG: sockname 10.3.18.80[500]
 DEBUG: send packet from 10.3.18.80[500]
 DEBUG: send packet to 10.3.18.78[500]
 DEBUG: src4 10.3.18.80[500]
 DEBUG: dst4 10.3.18.78[500]
 DEBUG: 1 times of 40 bytes message will be sent to 10.3.18.80[500]
 DEBUG: sendto Information notify.
 ERROR: can't start the quick mode, there is no ISAKMP-SA, 
 a01a06f0387c51f7:89df06cf3b2058a0:00000254
 DEBUG: ===
 DEBUG: 68 bytes message received from 10.3.18.78[500] to 10.3.18.80[500]
 ERROR: unknown Informational exchange received.
 === racoon.log begin
 
 --- ifmail v.2.15dev5.3
  * Origin: Svit Online (post does not reflect views of Golden Tele (2:5020/400)
 
 

Вернуться к списку тем, сортированных по: возрастание даты  уменьшение даты  тема  автор 

Тема:    Автор:    Дата:    IPsec D-link DI-804HV - linux-box with racoon troubles   Pavel L.L.   01 Nov 2004 23:45:51   Re: IPsec D-link DI-804HV - linux-box with racoon troubles   Pavel L.L.   02 Nov 2004 19:59:05