Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 0 replies
  • Subscribers 1 subscriber
  • Views 193 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ASL V5 and ASC V8.1

fbraun
Hello,

we have a Astaro V5 with dyndns running. We want to connect to the asl with road warrior vpn by X.509 certificate. 

the asl vpn id is the dyndns-hostname. the client vpn id is the fully qulaified username -> email adress.

we can`t connect us to the asl with the client. following  message is written in the client log: 
17.11.2004 15:04:32  NCPIKE-phase1:name(fellbach) - outgoing connect request - main mode.
17.11.2004 15:04:32  XMIT_MSG1_MAIN - fellbach
17.11.2004 15:04:50  NCPIKE-phase1:name(fellbach) - error - retry timeout - max retries
17.11.2004 15:04:50  NCPIKE-phase2:name(fellbach) - error - cleared by phase1
17.11.2004 15:04:50  IPSDIAL  - disconnected from fellbach on channel 1.

following message is written on the asl ipsec-vpn live log:
2004:11:17-15:04:44 (none) pluto[6316]: packet from 217.248.109.23:500: ignoring Vendor ID payload [XAUTH]
2004:11:17-15:04:44 (none) pluto[6316]: packet from 217.248.109.23:500: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03]
2004:11:17-15:04:44 (none) pluto[6316]: packet from 217.248.109.23:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
2004:11:17-15:04:44 (none) pluto[6316]: packet from 217.248.109.23:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
2004:11:17-15:04:44 (none) pluto[6316]: packet from 217.248.109.23:500: received Vendor ID payload [Dead Peer Detection]
2004:11:17-15:04:44 (none) pluto[6316]: packet from 217.248.109.23:500: ignoring Vendor ID payload [101fb0b35c5a4f4c...]
2004:11:17-15:04:44 (none) pluto[6316]: packet from 217.248.109.23:500: ignoring Vendor ID payload [Cisco-Unity]
2004:11:17-15:04:44 (none) pluto[6316]: packet from 217.248.109.23:500: initial Main Mode message received on 80.131.47.201:500 but no connection has been authorized with policy=RSASIG
2004:11:17-15:04:50 (none) pluto[6316]: packet from 217.248.109.23:500: ignoring Delete SA payload: not encrypted
2004:11:17-15:04:50 (none) pluto[6316]: packet from 217.248.109.23:500: received and ignored informational message

thank you for help!


This thread was automatically locked due to age.
Cookie Information Banner