[Vpn-help] Problem in configuring in ubuntu 8.04

P.M.S.Prakash prakashpms at gmail.com
Thu Aug 28 13:20:17 CDT 2008 

Hi Matthew,

Did you get a chance to see why this problem is occurring on ubuntu.

Best Regards
Prakash

On Tue, Aug 26, 2008 at 9:08 AM, P. M. S. Prakash <prakashpms at gmail.com>wrote:

> Hi Matthew,
>
> 1) Are you using a 32bit or 64bit build of Ubuntu?
>
>
> I am using 32bit build of Ubuntu.
>
> 2) Have you tried the head version of the client from the public subversion
>> repository to see if the problems exist there as well? You can obtain these
>> sources via 'svn co svn://svn.shrew.net/ike/head'.
>
>
> I tried the head version and now I am able to see FQDN, User FQDN options
> while editing.
>
> With this head version, the tunnel gets established, but not able to ping
> or access the remote network behind the vpn router. I see that it adds the
> following entry to the routing table and so I am able to access only the
> public IP of the vpn router. Also, it doesn't delete this entry after
> disconnecting the tunnel
>
> Destination     Gateway         Genmask         Flags   MSS Window  irtt
> Iface
> *XX.XX.XX.XX   192.168.1.1     255.255.255.255 UGH       0 0          0
> eth0*
> 192.168.1.0     0.0.0.0         255.255.255.0   U         0 0          0
> eth0
> 169.254.0.0     0.0.0.0         255.255.0.0     U         0 0          0
> eth0
> 0.0.0.0         192.168.1.1     0.0.0.0         UG        0 0          0
> eth0
>
> Can you suggest why I am not able to access the remote network?
>
> Also, does shrewsoft vpn client support connecting to GroupVPN tunnel. I
> tried connecting to the GroupVPN tunnel and it doesnt connect phase 2. Looks
> like it has PFS negotiation issue.
>
> Aug 26 08:27:18 2008     VPN Log
>    we require PFS but Quick I1 SA specifies no GROUP_DESCRIPTION Aug 26
> 08:27:28 2008     VPN Log    Quick Mode I1 message is unacceptable because
> it uses a previously used Message ID 0x71de5dbd (perhaps this is a
> duplicated packet)
>
> To summarize, connecting to GroupVPN tunnel has group2 pfs issue and
> connecting to one-to-one tunnel is able to establish the tunnel, but able to
> access the remote network.
>
> Best Regards
> Prakash
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20080828/98723b7f/attachment-0002.html>

More information about the vpn-help mailing list