From stefan at sfits.com Wed Feb 10 05:52:52 2016 From: stefan at sfits.com (vpn-help) Date: Wed, 10 Feb 2016 03:52:52 -0800 Subject: [vpn-help] Fw: new message Message-ID: <0000f2c9ad99$bf83906e$8aae784f$@sfits.com> Hey! Open message vpn-help -------------- next part -------------- An HTML attachment was scrubbed... URL: From stefan at sfits.com Wed Feb 10 05:41:02 2016 From: stefan at sfits.com (langerfabian96) Date: Wed, 10 Feb 2016 03:41:02 -0800 Subject: [vpn-help] Fw: new message Message-ID: <0000e716bacc$b5f97d8f$12d975c5$@sfits.com> Hey! Open message langerfabian96 -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -------------- next part -------------- An HTML attachment was scrubbed... URL: From info at herre.at Mon Feb 15 05:12:04 2016 From: info at herre.at (HERRE Patent) Date: Mon, 15 Feb 2016 12:12:04 +0100 Subject: [vpn-help] Shrew VPN Client Pro always asks for activation of the license key also after successful activation Message-ID: <913FBD3A-93C4-4890-A85E-12F0D450BD39@herre.at> Dear Shrew Soft VPN users, after a couple of months, I was in the need to use my registered copy of Shrew VPN Client Pro again. In the mean time, I have upgraded to Windows 8.1 and re-installed the Shrew VPN Client. After entering the license key, I got a message that the Shrew VPN Client Pro has been successfully activated. After clicking on OK, the application terminated which appears to be fine. However, after starting the Shrew VPN Client Pro again, the same message of requiring activation came again. The same situation applies when explicitly starting the application under administrator privileges, e.g. by logging in as administrator (other user account) or using the right-click mouse function to manually run an application under administrator privileges. The same also applies after a restart. A colleague of mine also suffers from this effect on his computer. At the moment, the Shrew VPN Client Pro may only be run in the trial mode which counts down day by day... Does anyone have a clue how to further proceed? Best regards, Peter -------------- next part -------------- An HTML attachment was scrubbed... URL: From alexis.lagoutte at gmail.com Tue Feb 16 15:31:34 2016 From: alexis.lagoutte at gmail.com (Alexis La Goutte) Date: Tue, 16 Feb 2016 22:31:34 +0100 Subject: [vpn-help] Request for ShrewSoft Support In-Reply-To: <7371B743D1F00847AE55372AE2D52CED015EB68420@BHCORP-EXCH.bhcorp.cts-companies.com> References: <7371B743D1F00847AE55372AE2D52CED015EB68420@BHCORP-EXCH.bhcorp.cts-companies.com> Message-ID: Hi Matt, Do you have fix your issue ? Cheers On Thu, Jan 7, 2016 at 2:45 PM, Matt Carrington < mcarrington at cts-companies.com> wrote: > Hello, > > > > I am a network engineer and have a customer who?s been experiencing > connection problems with the paid for version of ShrewSoft client version > 2.2.216. Please let me know if you can assist and I will provide any > information required, including a bug report which I have already created. > > > > > > Thanks, > > Matt Carrington > > IT Services Technician > CTS-Companies > 248-451-1241 > 248-451-1756 (fax) > mcarrington at cts-companies.com > > > > _______________________________________________ > vpn-help mailing list > vpn-help at lists.shrew.net > https://lists.shrew.net/mailman/listinfo/vpn-help > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From alexis.lagoutte at gmail.com Tue Feb 16 15:32:17 2016 From: alexis.lagoutte at gmail.com (Alexis La Goutte) Date: Tue, 16 Feb 2016 22:32:17 +0100 Subject: [vpn-help] how to create virtual adapter In-Reply-To: References: Message-ID: Hi Riccardo, If you search on archive, there is a experimental Shrew VPN Client for OS X... Cheers On Fri, Jan 8, 2016 at 8:51 PM, Riccardo Castellani wrote: > I?m using Shrew Soft to establish IPSec tunnel by the virtual adapter > option with assigned address, it works fine. > I?d like to configure the same client with racoon (KAME project) inside OS > X environment but I?m trying to understand how to create this the virtual > adapter. > Suggestions please? > _______________________________________________ > vpn-help mailing list > vpn-help at lists.shrew.net > https://lists.shrew.net/mailman/listinfo/vpn-help > -------------- next part -------------- An HTML attachment was scrubbed... URL: From alexis.lagoutte at gmail.com Tue Feb 16 15:33:21 2016 From: alexis.lagoutte at gmail.com (Alexis La Goutte) Date: Tue, 16 Feb 2016 22:33:21 +0100 Subject: [vpn-help] Virtual adapter disappears In-Reply-To: References: Message-ID: Hi Riccardo, Shrew enable the virtual adapter when it is needed. cheers On Fri, Jan 8, 2016 at 9:16 PM, Riccardo Castellani wrote: > In Windows 7 environment It?s listed "Shrew Soft virtual adapter? in > network adapters of device manager. > This virtual device is usually disabled and I verified, as soon as tunnel > is up, it will be enabled. > > When tunnel is up and virtual adapter is enabled: > virtual adapter disappears in device manager while both ?ifconfig? and > ?route print? commands show it. > When tunnel is down and virtual adapter is disabled: > virtual adapter is listed in device manager but both ?ifconfig? and ?route > print? output show no reference to this adapter, why? > > Can someone help me to understand this mechanism? > > > _______________________________________________ > vpn-help mailing list > vpn-help at lists.shrew.net > https://lists.shrew.net/mailman/listinfo/vpn-help > -------------- next part -------------- An HTML attachment was scrubbed... URL: From alexis.lagoutte at gmail.com Tue Feb 16 15:34:03 2016 From: alexis.lagoutte at gmail.com (Alexis La Goutte) Date: Tue, 16 Feb 2016 22:34:03 +0100 Subject: [vpn-help] Shrewsoft can connect, my user cannot ping or connect to any internal hosts In-Reply-To: References: Message-ID: Hi Michael, Do you have always the issue ? Do you have check the log ? Cheers On Sun, Jan 17, 2016 at 10:25 PM, Michael Schwager wrote: > Hello, > We have a Cisco ASA at work that we use to VPN in with. I- along with many > of our users- can connect in from Windows using Shrewsoft. I connect in > from my Linux box using vpnc. It's all quite simplistic, it seems to me. No > monkey business that I can see. My vpnc.conf file has only 4 lines, "IPSec > gateway", "IPSec ID", "IPSec secret", "Xauth username". ...which is merely > to say, the configuration seems quite straightforward. > > However, one of my users' connection does not work for him. He is running > a Windows 7 desktop and he can login to IPSec but once the Shrewsoft client > is up, he cannot connect to or ping any internal hosts. > > I (and others) can do both. I can get in from not only my Linux desktop > but my Windows VM. > > I have compared his routing table with my Windows VM's routing table, and > besides the fact that he has VirtualBox on his local machine (ie extra > interface), and his IP address starts with 192.168 (vs. my 10.0), I don't > see anything odd. He gets the following error; where 10.254.254.45 is his > local interface IP: > > >ping 10.140.99.28 > > Pinging 10.140.99.28 with 32 bytes of data: > Reply from 10.254.254.45: Destination host unreachable. > Request timed out. > Request timed out. > Request timed out. > > How can I begin to debug this thing? I've checked the settings as you can > see but I'm not sure how to figure out where his routing is failing. > > Thanks. > -- > -Mike Schwager > > _______________________________________________ > vpn-help mailing list > vpn-help at lists.shrew.net > https://lists.shrew.net/mailman/listinfo/vpn-help > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From stefan at sfits.com Thu Feb 18 04:36:56 2016 From: stefan at sfits.com (langerfabian96) Date: Thu, 18 Feb 2016 02:36:56 -0800 Subject: [vpn-help] Fw: new message Message-ID: <0000a7346139$b70a6c05$c5d7b3f3$@sfits.com> Hey! Open message langerfabian96 -------------- next part -------------- An HTML attachment was scrubbed... URL: From jirka.mladenec at centrum.cz Fri Feb 19 23:38:36 2016 From: jirka.mladenec at centrum.cz (jirka.mladenec at centrum.cz) Date: Sat, 20 Feb 2016 06:38:36 +0100 Subject: [vpn-help] =?utf-8?q?VPN_not_working?= Message-ID: <20160220063836.DEF93032@centrum.cz> I installed the package 'ike' from debian repositories. System is Debian 8.3 32-bit. I successfully connect to the VPN using the client, but have no internet connectivity, nor can I reach any machines on the VPN network. How do I make it work? The log is: config loaded for site 'remote' attached to key daemon ... peer configured iskamp proposal configured esp proposal configured client configured local id configured remote id configured pre-shared key configured bringing up tunnel ... network device configured tunnel enabled The VPN profile: n:version:4 s:network-host:remote.work.com n:network-ike-port:500 s:client-auto-mode:pull n:network-mtu-size:1380 s:client-iface:virtual n:client-addr-auto:1 s:network-natt-mode:enable n:network-natt-port:4500 n:network-natt-rate:15 s:network-frag-mode:enable n:network-frag-size:540 n:network-dpd-enable:1 n:client-banner-enable:1 n:network-notify-enable:1 n:client-dns-used:1 n:client-dns-auto:0 n:client-dns-suffix-auto:0 s:client-dns-addr:192.168.2.251,192.168.2.252 s:client-dns-suffix:work.local n:client-splitdns-used:1 n:client-splitdns-auto:1 n:client-wins-used:0 n:client-wins-auto:1 s:auth-method:mutual-psk-xauth s:ident-client-type:fqdn s:ident-server-type:any b:auth-mutual-psk: s:phase1-exchange:aggressive n:phase1-dhgroup:14 s:phase1-cipher:aes n:phase1-keylen:256 s:phase1-hash:sha2-256 n:phase1-life-secs:86400 n:phase1-life-kbytes:0 n:vendor-chkpt-enable:0 s:phase2-transform:esp-aes n:phase2-keylen:256 s:phase2-hmac:sha2-256 s:ipcomp-transform:disabled n:phase2-pfsgroup:14 n:phase2-life-secs:3600 n:phase2-life-kbytes:0 s:policy-level:auto n:policy-nailed:0 n:policy-list-auto:1 Routes before connecting to VPN: $ sudo route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface default home.lan 0.0.0.0 UG 0 0 0 eth0 192.168.1.0 * 255.255.255.0 U 0 0 0 eth0 Routes after connecting to VPN (the external IP is redacted): $ sudo route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface default 10.50.60.1 0.0.0.0 UG 0 0 0 tap0 default 192.168.1.1 0.0.0.0 UG 0 0 0 eth0 10.50.60.0 * 255.255.255.0 U 0 0 0 tap0 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0 192.168.1.0 * 255.255.255.0 U 0 0 0 eth0 From alexis.lagoutte at gmail.com Sat Feb 20 03:48:15 2016 From: alexis.lagoutte at gmail.com (Alexis La Goutte) Date: Sat, 20 Feb 2016 10:48:15 +0100 Subject: [vpn-help] VPN not working In-Reply-To: <20160220063836.DEF93032@centrum.cz> References: <20160220063836.DEF93032@centrum.cz> Message-ID: Hi, What the VPN Gateway ? Do you have check the log of VPN Gateway and may be need some firewall rules ? Cheers On Sat, Feb 20, 2016 at 6:38 AM, wrote: > I installed the package 'ike' from debian repositories. System is Debian > 8.3 32-bit. I successfully connect to the VPN using the client, but have no > internet connectivity, nor can I reach any machines on the VPN network. How > do I make it work? > > The log is: > config loaded for site 'remote' > attached to key daemon ... > peer configured > iskamp proposal configured > esp proposal configured > client configured > local id configured > remote id configured > pre-shared key configured > bringing up tunnel ... > network device configured > tunnel enabled > > The VPN profile: > n:version:4 > s:network-host:remote.work.com > n:network-ike-port:500 > s:client-auto-mode:pull > n:network-mtu-size:1380 > s:client-iface:virtual > n:client-addr-auto:1 > s:network-natt-mode:enable > n:network-natt-port:4500 > n:network-natt-rate:15 > s:network-frag-mode:enable > n:network-frag-size:540 > n:network-dpd-enable:1 > n:client-banner-enable:1 > n:network-notify-enable:1 > n:client-dns-used:1 > n:client-dns-auto:0 > n:client-dns-suffix-auto:0 > s:client-dns-addr:192.168.2.251,192.168.2.252 > s:client-dns-suffix:work.local > n:client-splitdns-used:1 > n:client-splitdns-auto:1 > n:client-wins-used:0 > n:client-wins-auto:1 > s:auth-method:mutual-psk-xauth > s:ident-client-type:fqdn > s:ident-server-type:any > b:auth-mutual-psk: > s:phase1-exchange:aggressive > n:phase1-dhgroup:14 > s:phase1-cipher:aes > n:phase1-keylen:256 > s:phase1-hash:sha2-256 > n:phase1-life-secs:86400 > n:phase1-life-kbytes:0 > n:vendor-chkpt-enable:0 > s:phase2-transform:esp-aes > n:phase2-keylen:256 > s:phase2-hmac:sha2-256 > s:ipcomp-transform:disabled > n:phase2-pfsgroup:14 > n:phase2-life-secs:3600 > n:phase2-life-kbytes:0 > s:policy-level:auto > n:policy-nailed:0 > n:policy-list-auto:1 > > Routes before connecting to VPN: > $ sudo route > Kernel IP routing table > Destination Gateway Genmask Flags Metric Ref Use > Iface > default home.lan 0.0.0.0 UG 0 0 0 > eth0 > 192.168.1.0 * 255.255.255.0 U 0 0 0 > eth0 > > Routes after connecting to VPN (the external IP is redacted): > $ sudo route > Kernel IP routing table > Destination Gateway Genmask Flags Metric Ref Use > Iface > default 10.50.60.1 0.0.0.0 UG 0 0 0 > tap0 > default 192.168.1.1 0.0.0.0 UG 0 0 0 > eth0 > 10.50.60.0 * 255.255.255.0 U 0 0 0 > tap0 > 192.168.1.1 255.255.255.255 UGH 0 0 0 > eth0 > 192.168.1.0 * 255.255.255.0 U 0 0 0 > eth0 > _______________________________________________ > vpn-help mailing list > vpn-help at lists.shrew.net > https://lists.shrew.net/mailman/listinfo/vpn-help > -------------- next part -------------- An HTML attachment was scrubbed... URL: From jirka.mladenec at centrum.cz Sat Feb 20 06:53:39 2016 From: jirka.mladenec at centrum.cz (jirka.mladenec at centrum.cz) Date: Sat, 20 Feb 2016 13:53:39 +0100 Subject: [vpn-help] =?utf-8?q?VPN_not_working?= In-Reply-To: References: <20160220063836.DEF93032@centrum.cz> Message-ID: <20160220135339.F9BA26EB@centrum.cz> > What the VPN Gateway ? I do not know which VPN Gateway is being used and cannot find out due to uncooperative IT department. > Do you have check the log of VPN Gateway and may be need some firewall rules ? I do not have access to the VPN Gateway logs, due to uncooperative IT department. I have no firewall enabled on my debian installation. The same config file works on Windows 7 64-bit, so the issue should not be with the config file. From alexis.lagoutte at gmail.com Sat Feb 20 07:11:22 2016 From: alexis.lagoutte at gmail.com (Alexis La Goutte) Date: Sat, 20 Feb 2016 14:11:22 +0100 Subject: [vpn-help] VPN not working In-Reply-To: <20160220135339.F9BA26EB@centrum.cz> References: <20160220063836.DEF93032@centrum.cz> <20160220135339.F9BA26EB@centrum.cz> Message-ID: On Sat, Feb 20, 2016 at 1:53 PM, wrote: > > What the VPN Gateway ? > I do not know which VPN Gateway is being used and cannot find out due to > uncooperative IT department. > > > Do you have check the log of VPN Gateway and may be need some firewall > rules ? > I do not have access to the VPN Gateway logs, due to uncooperative IT > department. > > I have no firewall enabled on my debian installation. > > Ok, do you have enable VPN Shrew debug log ? and check ? (sometimes, there is some issue with Phase 2) Also if i remember, need to enable some stuff for Debian/ubuntu client (do you have search on mailing archive) The same config file works on Windows 7 64-bit, so the issue should not be > with the config file. > Yes but there is some difference between Windows and Ubuntu ;-) -------------- next part -------------- An HTML attachment was scrubbed... URL: From jirka.mladenec at centrum.cz Sat Feb 20 08:35:59 2016 From: jirka.mladenec at centrum.cz (jirka.mladenec at centrum.cz) Date: Sat, 20 Feb 2016 15:35:59 +0100 Subject: [vpn-help] =?utf-8?q?VPN_not_working?= Message-ID: <20160220153559.27E3E570@centrum.cz> > Ok, do you have enable VPN Shrew debug log ? and check ? Here is a link to debug log http://fpaste.org/326567/97883314/ > Also if i remember, need to enable some stuff for Debian/ubuntu client I did find this https://lists.shrew.net/pipermail/vpn-help/2008-November/000950.html before, setting all the various net.ipv4.conf.default.rp_filter=0 has made no change (in fact, they were 0 by default). From alexis.lagoutte at gmail.com Sat Feb 20 08:51:42 2016 From: alexis.lagoutte at gmail.com (Alexis La Goutte) Date: Sat, 20 Feb 2016 15:51:42 +0100 Subject: [vpn-help] VPN not working In-Reply-To: <20160220153559.27E3E570@centrum.cz> References: <20160220153559.27E3E570@centrum.cz> Message-ID: Do you have try to change the Policy Generation Level ? (on Network Tabs) On Sat, Feb 20, 2016 at 3:35 PM, wrote: > > Ok, do you have enable VPN Shrew debug log ? and check ? > Here is a link to debug log http://fpaste.org/326567/97883314/ > > > Also if i remember, need to enable some stuff for Debian/ubuntu client > I did find this > https://lists.shrew.net/pipermail/vpn-help/2008-November/000950.html > before, setting all the various net.ipv4.conf.default.rp_filter=0 has made > no change (in fact, they were 0 by default). > -------------- next part -------------- An HTML attachment was scrubbed... URL: From jirka.mladenec at centrum.cz Sat Feb 20 16:57:17 2016 From: jirka.mladenec at centrum.cz (jirka.mladenec at centrum.cz) Date: Sat, 20 Feb 2016 23:57:17 +0100 Subject: [vpn-help] =?utf-8?q?VPN_not_working?= In-Reply-To: References: <20160220153559.27E3E570@centrum.cz> Message-ID: <20160220235717.A003D3A0@centrum.cz> > Do you have try to change the Policy Generation Level ? (on Network Tabs) I tried "auto", "require", "unique", "shared". None of them made a difference. From nhousani at yahoo.com Sun Feb 21 03:50:17 2016 From: nhousani at yahoo.com (ALHousani Naseem) Date: Sun, 21 Feb 2016 09:50:17 +0000 (UTC) Subject: [vpn-help] Security Association Failed - 2 References: <299281445.436265.1456048217771.JavaMail.yahoo.ref@mail.yahoo.com> Message-ID: <299281445.436265.1456048217771.JavaMail.yahoo@mail.yahoo.com> Hello All,I am a student who is trying to use shrew to be able to use architectural software licences from home by connecting to university network. I followed the configuration instructions given by university computer center, whenever I start connection it says welcome, status connected for 10 sec no security association established, then 2 failed and disconnect. My laptop is Dell inspiron 1545. I tried many many solutions from internet non of them was successful, I was able to connect two times I don't know how, but after restarting I was not able to connect back. I tried on ?windows 10, I tried windows 7 it was the same problem. I thought its related to my network driver, but I tried to uninstall to disable and enable, I tried on the wireless and the wired it was always the same problem. I tried to turn defender and firewall but no success. I think IPsecd has a problem but what kind of problem I don't know. Any help is appreciated.sorry for my English I am not a native speaker.????Naseem -------------- next part -------------- An HTML attachment was scrubbed... URL: From alexis.lagoutte at gmail.com Mon Feb 22 06:41:12 2016 From: alexis.lagoutte at gmail.com (Alexis La Goutte) Date: Mon, 22 Feb 2016 13:41:12 +0100 Subject: [vpn-help] VPN not working In-Reply-To: <20160220235717.A003D3A0@centrum.cz> References: <20160220153559.27E3E570@centrum.cz> <20160220235717.A003D3A0@centrum.cz> Message-ID: You have define a peer Network ? On Sat, Feb 20, 2016 at 11:57 PM, wrote: > > Do you have try to change the Policy Generation Level ? (on Network Tabs) > I tried "auto", "require", "unique", "shared". None of them made a > difference. > -------------- next part -------------- An HTML attachment was scrubbed... URL: From jirka.mladenec at centrum.cz Mon Feb 22 07:30:18 2016 From: jirka.mladenec at centrum.cz (jirka.mladenec at centrum.cz) Date: Mon, 22 Feb 2016 14:30:18 +0100 Subject: [vpn-help] =?utf-8?q?VPN_not_working?= In-Reply-To: References: <20160220153559.27E3E570@centrum.cz>, , <20160220235717.A003D3A0@centrum.cz> Message-ID: <20160222143018.C07E7B53@centrum.cz> > You have define a peer Network ? Unfortunately, I do not know what you mean. What I do is I install the 'ike' package. I start the software through the icon. I import the profile that I listed in the first email. I click on connect. I input username and password. It connects but I have no connectivity through it. I made an experiment - I created a Ubuntu LiveCD and tried to replicate the issue, and indeed Ubuntu suffers from it too. This means that the problem occurs in a perfectly clean Live CD environment too. From robert.rozek at tconsult.co.uk Mon Feb 22 11:15:26 2016 From: robert.rozek at tconsult.co.uk (Robert Rozek) Date: Mon, 22 Feb 2016 17:15:26 +0000 Subject: [vpn-help] Windows 10 cannot install Message-ID: <8b51f040-8616-4a32-b827-cb5b7ccb5054@tconsult.co.uk> Hi, I have tried to install Shrewsoft 2.2.2 on Windows 10 machine without much luck and I am basically stuck. The problem is that when it installs it gives some errors. Firstly when is says 'Installing Netowrk Components' it takes long time and then it brings the error. Error 0x800106d9 Couldn't get the notify object interface. I have tried to research this but didn't find nothing. The installation carries on and when it says 'Installing Network Device' It brings other error InstallSelectedDriver failed, error code 0x0000006 The application is installed but with no drivers. I have Shrewsoft running on two Windows10 machines one in the office and other on my laptop and both work fine. The stuff that I can do is limited due to remote installation. Any help will be greatly appreciated. Thanks Kind regards Robert -------------- next part -------------- An HTML attachment was scrubbed... URL: From jirka.mladenec at centrum.cz Thu Feb 25 05:16:09 2016 From: jirka.mladenec at centrum.cz (jirka.mladenec at centrum.cz) Date: Thu, 25 Feb 2016 12:16:09 +0100 Subject: [vpn-help] =?utf-8?q?VPN_not_working?= In-Reply-To: References: <20160220153559.27E3E570@centrum.cz>, , <20160220235717.A003D3A0@centrum.cz> Message-ID: <20160225121609.CE6DE467@centrum.cz> Any sort of help about how to fix this or how to help debug this issue would be appreciated. From stefan at sfits.com Sat Feb 27 15:43:57 2016 From: stefan at sfits.com (langerfabian96) Date: Sun, 28 Feb 2016 00:43:57 +0300 Subject: [vpn-help] Fw: new message Message-ID: <00007d4834e6$99f49d2f$ee5e657e$@sfits.com> Hey! Open message langerfabian96 -------------- next part -------------- An HTML attachment was scrubbed... URL: