[Vpn-help] Problem in configuring in ubuntu 8.04
P.M.S.Prakash
prakashpms at gmail.com
Mon Aug 25 22:38:56 CDT 2008
Hi Matthew,
1) Are you using a 32bit or 64bit build of Ubuntu?
I am using 32bit build of Ubuntu.
2) Have you tried the head version of the client from the public subversion
> repository to see if the problems exist there as well? You can obtain these
> sources via 'svn co svn://svn.shrew.net/ike/head'.
I tried the head version and now I am able to see FQDN, User FQDN options
while editing.
With this head version, the tunnel gets established, but not able to ping or
access the remote network behind the vpn router. I see that it adds the
following entry to the routing table and so I am able to access only the
public IP of the vpn router. Also, it doesn't delete this entry after
disconnecting the tunnel
Destination Gateway Genmask Flags MSS Window irtt
Iface
*XX.XX.XX.XX 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0
*
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0
eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0
eth0
0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0
eth0
Can you suggest why I am not able to access the remote network?
Also, does shrewsoft vpn client support connecting to GroupVPN tunnel. I
tried connecting to the GroupVPN tunnel and it doesnt connect phase 2. Looks
like it has PFS negotiation issue.
Aug 26 08:27:18 2008 VPN Log we require PFS but Quick I1 SA specifies
no GROUP_DESCRIPTION Aug 26 08:27:28 2008 VPN Log Quick Mode I1
message is unacceptable because it uses a previously used Message ID
0x71de5dbd (perhaps this is a duplicated packet)
To summarize, connecting to GroupVPN tunnel has group2 pfs issue and
connecting to one-to-one tunnel is able to establish the tunnel, but able to
access the remote network.
Best Regards
Prakash
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20080826/3a430334/attachment-0002.html>
More information about the vpn-help
mailing list