OpenSwan issues on Debian?
Hi! Is there some special issues with OpenSwan 2.4.5 and Debian 3.1 Sarge? I'm trying to make secure tunnel on debian server with i-mate mobile client, and the pluto daemon drops this errors in auth.log:
Apr 10 11:16:37 swat pluto[8765]: "host-host" #1: sending encrypted notification INVALID_ID_INFORMATION to EX_GPRS_IP:36450
Apr 10 11:16:38 swat pluto[8765]: "host-host" #1: Main mode peer ID is ID_DER_ASN1_DN: 'C=RU, ST=Moscow, O=Some Company, CN=Some User, E=somemail@no.spam'
Apr 10 11:16:38 swat pluto[8765]: "host-host" #1: sending encrypted notification INVALID_ID_INFORMATION to EX_GPRS_IP:36450
and the same messages 2 or 3 times..
by the way client is natted and connected through
GPRS. here is main config test config, ipsec.conf:
config setup
crlcheckinterval=600
strictcrlpolicy=yes
nat_traversal=yes
conn rw
left=%defaultroute
leftsubnet=internal-subnet/24
leftnexthop=%defaultroute
leftcert=gatewaycert.pem
right=external_grps_gw_ip
rightca="C=RU, ST=Moscow, O=*, CN=*"
rightid=%any
rightrsasigkey=%cert
auto=start
my target: creating a tunnel between i-mate client and vpn-server. any ideas what is wrong?
--
stanislav
Reply to: