Displaying 20 results from an estimated 2000 matches similar to: "Re: IPSec Passthrough fails when using CiscoVPNclient"
2007 Jul 05
2
Re: [strongSwan] Interop problem Linksys WRV200 with Strongswan 4.1.3 / PSK
Hi Andreas,
I don''t know if the WRV200 is running freeswan or openswan.
We use the newest US-version of the linksys firmware 1.0.32.2 from 2.5.2007.
Another problem is in accessing the vpn-Gateway itself with ssh for
instance,
I get a freezing windows, whenever I tranfer more than just a few bytes.
I can type my login-name and my password, then get a prompt ...
but if I call,
2004 Apr 27
2
IPsec works, but racoon/IKE does not
I have no idea whatsoever as to why racoon/IKE does not work here.
I've tried various how-to documents but found nothing that works for
me.
Gateway (10.0.0.1) running 4.9-stable.
Laptop (10.0.0.10) running 5.2.1-release.
Both running racoon-20040408a
On the gateway 10.0.0.1
# cat /etc/ipsec.conf
add 10.0.0.1 10.0.0.10 esp 691 -E rijndael-cbc "1234567890123456" -A
hmac-sha1
2004 Jan 13
3
IPSEC btwn stable and Linksys BEFVP41 stopped working.
Hi,
I have been using IPsec to communicate between a laptop that tracks
-stable and a Linksys BEFVP41 router.
I only use it infrequently, but it's been working great. My setup is
as described in http://grapeape.alerce.com/linksys-ipsec/article.html
(which I am planning to submit to the handbook when it's done).
I'm no longer able to make an ipsec connection, and I can't put my
2006 May 06
1
IPsec with racoon2
Hi,
I'm trying to get IPsec running between 2 FreeBSD (VMware) boxes, using racoon2.
spmd and iked start up okay, but I get an error when I try a ping across the tunnel.
/var/log/messages shows:
May 5 13:52:36 biosa-vm4 iked: [INTERNAL_ERR]: if_spmd.c:726: SLID failed: 550 Operation failed
May 5 13:52:36 biosa-vm4 iked: [INTERNAL_ERR]: isakmp.c:647:isakmp_initiate_cont(): 0:172.20.36.55[0]
2016 Feb 17
2
Openswan <-> VyOS
Hello,
I'm having a bit of trouble connecting our current CentOS Openswan server
with a Vyos server via IPSec.
I've posted this on the VyOS forums, but haven't had many helpful
responses, so I thought I would ask here.
http://forum.vyos.net/showthread.php?tid=26504&pid=29703#pid29703
Basically our Openswan configuration is as follows:
conn VYOS
keyingtries=0
2004 Oct 22
0
IPSec tunnel mode with IKE daemon
Hi all.
The IPSec part of the LARTC howto is great, but I''ve hit a problem in
7.3. IPSEC tunnels. The example given is for manual keying:
add 10.0.0.216 10.0.0.11 esp 34501
-m tunnel
-E 3des-cbc "123456789012123456789012";
How does one setup "tunnel mode" using racoon?
Trying to setup an ipsec tunnel between two subnets: 10.10.42.0/24 and
10.1.1.0/24 using a
2004 Jul 26
1
Cisco IOS and racoon
I am trying to get a tunnel from a cisco 1760 with IOS 12.2.15.t13 to a
freebsd 4.9 install with racoon. I have package version
freebsd-20040408a and internal version 20001216 in my log file.
I posted the full racoon and cisco log below my configs.
Racoon keeps saying:
2004-07-26 16:24:03: DEBUG: isakmp.c:2295:isakmp_printpacket(): begin.
2004-07-26 16:24:03: DEBUG:
2005 Jan 14
1
debugging encrypted part of isakmp
Are there any tools to decode encrypted part of isakmp provided that
identities of both peers are known to me and that I am able to observe
the whole exchange ?
--
Andriy Gapon
2016 Feb 09
0
OpenSwan Drop Out Issue
Try setting lower keyexpiry time on other endpoint.
--
Eero
2016-02-09 17:04 GMT+02:00 John Cenile <jcenile1983 at gmail.com>:
> Hello,
>
> I'm cross posting this from the OpenSwan mailing list, in case someone here
> can help.
>
> We have two sites connected via OpenSwan 2.6.32-9 on CentOS 5, sharing 6
> /24 subnets each (so 12 in total).
>
> The problem
2016 Feb 09
4
OpenSwan Drop Out Issue
Hello,
I'm cross posting this from the OpenSwan mailing list, in case someone here
can help.
We have two sites connected via OpenSwan 2.6.32-9 on CentOS 5, sharing 6
/24 subnets each (so 12 in total).
The problem we're having is completely randomly, be it in the middle of the
day, or in the middle of the night (so I don't believe it's traffic
related), certain (and sometimes
2007 Apr 18
1
[Bridge] single briged network internet access problems
Hi,
I've some problems with this network :
[ host1 eth0: 10.22.2.4/8 ] [ host2 eth0:10.22.2.5/8 default route host3]
\ /
SWITCH internet
| |
|
2007 May 28
3
Log questions
Hello,
Can anyone tell me my shorewall is get hacked ? or local Lan computers
got Virus ? please see the following log.
http://www.wilson-kwok.com/shorewall.txt
Please help
---------------------------------
現在你可輕易阻擋垃圾郵件,立即使用Yahoo! Mail 你就會相信!
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
2007 Jun 27
3
Adding custom iptables rules to shorewall
Hi,
I''m trying to add following iptables rules to shorewall:
iptables -I INPUT -d 192.168.1.1
iptables -I OUTPUT -s 192.168.1.1
What should I put in my custom action or any ware else?
I need these rules for munin accounting.
iptables -L INPUT -v -n -x
Chain INPUT (policy DROP 5 packets, 260 bytes)
pkts bytes target prot opt in out source
destination
7175
2007 Jun 18
3
ip_tables: policy match: invalid size 308 != 116
when i start or restart syslog-ng, i''ve above message.
Can this be a shorewall or iptables synchro ?
mess-mate
--
April 1
This is the day upon which we are reminded of what we are on the other three
hundred and sixty-four.
-- Mark Twain, "Pudd''nhead Wilson''s Calendar"
2007 Jul 08
6
mldonkey/edonkey - servers not connected
Hi,
I''m running mldonkey on same box as shorewall.
I follow this http://mldonkey.sourceforge.net/ShorewallConfiguration to open
ports for edonkey protocol
I add in /etc/shorewall/rules:
# eDonkey 2000
ACCEPT net $FW tcp 4662
ACCEPT net $FW udp 4666
but I could not connect to any edonkey server.
I check logs and notice that udp traffic on port 4666 is still dropped.
Jul 8 22:35:57
2007 Jun 15
2
Using Proxy ARP inside Xen DomUs
Hello list
I''m considering moving shorewall to a xen domu and the using the Proxy ARP
method (we use NAT today).
Is it possible to have a Proxy ARP firewall inside a domu serving requests
to other domus with public IP-addresses placed on separate hardware (not the
hardware the domu with the firewall is on) ?
I figure that there''s a problem since it''s different bridges
2007 May 25
4
machine in the dmz zone
Hi,
i wonder if there is any need to install shorewall on a machine
located in the dmz zone of shorewaal. ( 3 interfaces example)
mess-mate
--
You are a fluke of the universe; you have no right to be here.
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE
2007 May 22
5
Shorewall and Xen with network-dummy
Hello *,
I''m trying to setup Shorewall under Ubuntu 7.04 and Xen configured to
use network-dummy instead of network-bridge (network-bridge seems to be
buggy at the moment under Debian/Ubuntu).
Is there a shorewall config example I can use in combination with
network-dummy?
In particular, with network-dummy there is no peth interface and the
bridge include the real eth interface.
I
2007 May 04
1
Multiple SA in the same IPSec tunnel
Hi,
When a IPSec tunnel is established between two peers, I understand that the
"normal" situation is to have in a given moment two SAs, one for each
direction of the tunnel.
However, in one of my tunnels (peer P1 running GNU/Linux with setkey and
racoon; peer P2 is a Cisco router) there is a large number (around 19) of
SAs established (this has been observed in P1 with
2007 Jun 05
9
PPTP port forwarding question
Hello,
Please see the following picture:
http://www.wilson-kwok.com/pptp.jpg
I used one to one NAT from 210.0.0.1 to 192.168.0.2 for web server,
and then use port forwarding from 210.0.0.1 to 192.168.0.3 for pptp server,
but I cannot connect from my home to pptp server.
Here is the nat file:
210.0.0.1 eth0:2 192.168.0.2
Here is the rules