[vpn-help] Am I looking any better?
kevin shrew-vpn
klmlk at hotmail.com
Wed Jun 30 11:12:47 CDT 2010
On Tue, 29 Jun 2010 22:03:21 -0700
Jerrard Holland <jerrardholland at hotmail.com> wrote:
>
> vpn client 2.1.5
>
> windows 7
>
> netgear fvs 338
>
>
>
> _________________________________________________________________
> The New Busy think 9 to 5 is a cute idea. Combine multiple calendars
> with Hotmail.
> http://www.windowslive.com/campaign/thenewbusy?tile=multicalendar&ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_5
Hi Jerrard, you are looking better. It looks now like you're getting
through phase 1 and Xauth and start phase 2 negotiations. However,
about 5 seconds after that starts, the gateway (Netgear) seems to tear
down the session. I think at this point it would be useful to know
what the Netgear logs report, because it might be expecting something
else from your client.
10/06/29 21:38:03 ii : calling init phase2 for initial policy
10/06/29 21:38:03 DB : policy found
10/06/29 21:38:03 DB : policy found
10/06/29 21:38:03 DB : tunnel found
10/06/29 21:38:03 DB : new phase2 ( IPSEC initiator )
10/06/29 21:38:03 DB : phase2 added ( obj count = 1 )
10/06/29 21:38:03 K> : send pfkey GETSPI ESP message
10/06/29 21:38:03 K< : recv pfkey GETSPI ESP message
10/06/29 21:38:03 DB : phase2 found
10/06/29 21:38:03 ii : updated spi for 1 ipsec-esp proposal
10/06/29 21:38:03 DB : phase1 found
10/06/29 21:38:03 >> : hash payload
10/06/29 21:38:03 >> : security association payload
10/06/29 21:38:03 >> : - proposal #1 payload
10/06/29 21:38:03 >> : -- transform #1 payload
<snip>
10/06/29 21:38:03 >> : -- transform #18 payload
10/06/29 21:38:03 >> : nonce payload
10/06/29 21:38:03 >> : identification payload
10/06/29 21:38:03 >> : identification payload
10/06/29 21:38:03 == : phase2 hash_i ( input ) ( 632 bytes )
10/06/29 21:38:03 == : phase2 hash_i ( computed ) ( 20 bytes )
10/06/29 21:38:03 == : new phase2 iv ( 8 bytes )
10/06/29 21:38:03 >= : cookies 29f2eb4e674e6546:48b3e3df3f6b2f98
10/06/29 21:38:03 >= : message d5029d0c
10/06/29 21:38:03 >= : encrypt iv ( 8 bytes )
10/06/29 21:38:03 == : encrypt packet ( 680 bytes )
10/06/29 21:38:03 == : stored iv ( 8 bytes )
10/06/29 21:38:03 >> : fragment payload
10/06/29 21:38:03 -> : send NAT-T:IKE packet 192.168.2.103:4500 ->
xx.x.xx.xx:4500 ( 568 bytes )
10/06/29 21:38:03 ii : ike packet fragment #1 sized to 500 bytes
10/06/29 21:38:03 >> : fragment payload
10/06/29 21:38:03 -> : send NAT-T:IKE packet 192.168.2.103:4500 ->
xx.x.xx.xx:4500 ( 252 bytes )
10/06/29 21:38:03 ii : ike packet fragment #2 sized to 184 bytes
10/06/29 21:38:03 DB : phase2 resend event scheduled ( ref count = 2 )
10/06/29 21:38:08 -> : resend 2 phase2 packet(s) 192.168.2.103:4500 ->
99.2.26.70:4500
10/06/29 21:38:09 <A : peer tunnel disable message
More information about the vpn-help
mailing list