OpenSwan issues on Debian?

To: debian-isp@lists.debian.org
Subject: OpenSwan issues on Debian?
From: Станислав <st4nis1av@mail.ru>
Date: Tue, 11 Apr 2006 16:04:20 +0400
Message-id: <[🔎] E1FTHbY-000KK7-00.st4nis1av-mail-ru@f23.mail.ru>
Reply-to: Станислав <st4nis1av@mail.ru>

Hi! Is there some special issues with OpenSwan 2.4.5 and Debian 3.1 Sarge? I'm trying to make secure tunnel on debian server with i-mate mobile client, and the pluto daemon drops this errors in auth.log:

Apr 10 11:16:37 swat pluto[8765]: "host-host" #1: sending encrypted notification INVALID_ID_INFORMATION to EX_GPRS_IP:36450
Apr 10 11:16:38 swat pluto[8765]: "host-host" #1: Main mode peer ID is ID_DER_ASN1_DN: 'C=RU, ST=Moscow, O=Some Company, CN=Some User, E=somemail@no.spam'
Apr 10 11:16:38 swat pluto[8765]: "host-host" #1: sending encrypted notification INVALID_ID_INFORMATION to EX_GPRS_IP:36450

and the same messages 2 or 3 times..
by the way client is natted and connected through
GPRS. here is main config test config, ipsec.conf:
config setup
        crlcheckinterval=600
        strictcrlpolicy=yes
        nat_traversal=yes
conn rw
        left=%defaultroute
        leftsubnet=internal-subnet/24
        leftnexthop=%defaultroute
        leftcert=gatewaycert.pem
        right=external_grps_gw_ip
        rightca="C=RU, ST=Moscow, O=*, CN=*"
        rightid=%any
        rightrsasigkey=%cert
        auto=start

my target: creating a tunnel between i-mate client and vpn-server. any ideas what is wrong?

--
stanislav

Reply to:

Prev by Date: Re: we were attacked
Next by Date: rdiff-backup other port
Previous by thread: Re: Multi server package management
Next by thread: rdiff-backup other port
Index(es):
- Date
- Thread