Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 709 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

rsa question

orhan
i have a successfull ipsec rsa connectoin on 3 astaros.
but what i dont understand is the following. what does it means.

2003-Nov  8 11:45:24 (none) pluto[1486]: "Ipsec__rsa__astaro_1"[13] 212.xxx.xxx.xx:4500 #96618: max number of retransmissions (20) reached STATE_MAIN_I1.  No acceptable response to our first IKE message 
2003-Nov  8 11:45:24 (none) pluto[1486]: "Ipsec__rsa__astaro_1"[13] 212.xxx.xxx.xx:4500 #96618: starting keying attempt 183 of an unlimited number 
2003-Nov  8 11:45:24 (none) pluto[1486]: "Ipsec__rsa__astaro_1"[13] 212.xxx.xxx.xx:4500 #96651: initiating Main Mode to replace #96618 

the vpn tunnel is up and i can ping also the network.
   


This thread was automatically locked due to age.
Parents
  • 0
    Are you sure that your tunnel is up, because the error message signals that the peer either cannot be reached using the IKE protocol (UDP/500) or does not answer due to some error (no common proposal, no connection definition, etc.). Verify if your ping packets are really being encrypted using tcpdump or ethereal.

    Also ipsec auto --status should  show the entry

    "Ipsec__rsa__astaro_1" STATE_QUICK_R2 (IPsec SA established);

    Kind regards

    Andreas  
  • 0 in reply to Andreas Steffen
    yes im sure because i can work fine on my remote network. 

    "Ipsec__rsa__astaro_1"[1] 212.xxx.xxx.xxx:4500 STATE_QUICK_R2 (IPsec SA established); EVENT_SA_EXPIRE in 137s
      
Reply Children
No Data
Cookie Information Banner