Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 7839 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Shrew and IPSec on Astaro UTM9

Spoony
Hi there,

i have the following problem. I established a connection through the shrew Softwareclient to the astaro and the IP-Sec log tells me the following:

2012:09:25-17:10:26 rfw1-1 pluto[13125]: "S_Shrew"[22] 109.84.0.72:41838 #14: cannot respond to IPsec SA request because no connection is known for 0.0.0.0/0===80.134.168.31:4500[80.134.168.31]...109.84.0.72:41838[172.20.10.2]===10.242.4.1/32
2012:09:25-17:10:26 rfw1-1 pluto[13125]: "S_Pohl Shrew"[22] 109.84.0.72:41838 #14: sending encrypted notification INVALID_ID_INFORMATION to 109.84.0.72:41838 

Can anyone tell me what went wrong?

Thanks in advance

Lars


This thread was automatically locked due to age.
Parents
  • 0
    Hi,
    i have more detailed information of the error now:


    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | removing 8 bytes of padding
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | peer client is 109.85.162.195
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | peer client protocol/port is 0/0
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | our client is subnet 0.0.0.0/0
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | our client protocol/port is 0/0
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: "D_Test"[2] 109.85.162.195 #4: cannot respond to IPsec SA request because no connection is known for 0.0.0.0/0===80.134.174.47[80.134.174.47]...109.85.162.195[109.85.162.195]
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: "D_Test"[2] 109.85.162.195 #4: sending encrypted notification INVALID_ID_INFORMATION to 109.85.162.195:500
    2012:09:26-10:46:07 rfw1-1 pluto[29496]: | 
Reply
  • 0
    Hi,
    i have more detailed information of the error now:


    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | removing 8 bytes of padding
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | peer client is 109.85.162.195
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | peer client protocol/port is 0/0
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | our client is subnet 0.0.0.0/0
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: | our client protocol/port is 0/0
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: "D_Test"[2] 109.85.162.195 #4: cannot respond to IPsec SA request because no connection is known for 0.0.0.0/0===80.134.174.47[80.134.174.47]...109.85.162.195[109.85.162.195]
    2012:09:26-10:46:02 rfw1-1 pluto[29496]: "D_Test"[2] 109.85.162.195 #4: sending encrypted notification INVALID_ID_INFORMATION to 109.85.162.195:500
    2012:09:26-10:46:07 rfw1-1 pluto[29496]: | 
Children
No Data