<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML xmlns:v = "urn:schemas-microsoft-com:vml" xmlns:o =
"urn:schemas-microsoft-com:office:office" xmlns:w =
"urn:schemas-microsoft-com:office:word"><HEAD>
<META content=text/html;charset=iso-8859-1 http-equiv=Content-Type>
<META name=GENERATOR content="MSHTML 8.00.7600.16466">
<STYLE>
v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</STYLE>
<STYLE>
<!--
/* Font Definitions */
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:blue;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-reply;
font-family:Arial;
color:navy;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
{page:Section1;}
-->
</STYLE>
</HEAD>
<BODY style="PADDING-LEFT: 10px; PADDING-RIGHT: 10px; PADDING-TOP: 15px"
id=MailContainerBody lang=EN-US leftMargin=0 link=blue topMargin=0 vLink=blue
CanvasTabStop="true" name="Compose message area">
<DIV><FONT size=2 face=Arial>Well I don't know if it applies here but I had a
very similar situation with my FVS318. I couldn't and still can't get the
release code to connect but I have successfully got the 2.2.9 apha code to work
very successfully including propagating WINS. I should add that I have two
nearly identical config files and one works and the other does not. Only the
variable order is changed between the two config files. I am guessing this
is a Shrew client problem rather than a Netgear problem. </FONT></DIV>
<DIV style="FONT: 10pt Tahoma">
<DIV><BR></DIV>
<DIV style="BACKGROUND: #f5f5f5">
<DIV style="font-color: black"><B>From:</B> <A
title="mailto:ceb@mauto.com
CTRL + Click to follow link"
href="mailto:ceb@mauto.com">Charles Buckley</A> </DIV>
<DIV><B>Sent:</B> Wednesday, December 09, 2009 6:17 PM</DIV>
<DIV><B>To:</B> <A
title="mailto:vpn-help@lists.shrew.net
CTRL + Click to follow link"
href="mailto:vpn-help@lists.shrew.net">vpn-help@lists.shrew.net</A> </DIV>
<DIV><B>Subject:</B> Re: [Vpn-help] Help configuring Netgear FVX538
router</DIV></DIV></DIV>
<DIV><FONT size=2 face=Arial></FONT><BR></DIV>
<DIV class=Section1>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt">I published a couple of
posts about this – I’m waiting for an escalation with Netgear to go through.
It seems their customer support people can just misrepresent issues they
don’t understand, and their management will believe
it.<o:p></o:p></SPAN></FONT></P>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt"><o:p> </o:p></SPAN></FONT></P>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt">I don’t have time to
redo the whole thing, but it is possible to get this to
work.<o:p></o:p></SPAN></FONT></P>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt"><o:p> </o:p></SPAN></FONT></P>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt">You must set up a VPN
policy – mode-config doesn’t work. This means you must manually configure
the VON IP address of each client that connects. This IP address must be
on a different subnet than the LAN. <o:p></o:p></SPAN></FONT></P>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt">The remote IP mask of
he VPN policy must be set to ‘any,’ which means that NetBIOS broadcasts don’t
work. All these behaviours (with the exception of no mode config) also
occur with the Netgear supplied client (cutting Shrew out of the equation
completely). But mode-config does work with the Netgear-supplied
client. Netgear are informed of this, but they’ve chosen to distort and/or
ignore the issues.<o:p></o:p></SPAN></FONT></P>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt"><o:p> </o:p></SPAN></FONT></P>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt">Those are the main
caveats to getting things to work. There may be a few others – search the
archives. <o:p></o:p></SPAN></FONT></P>
<P class=MsoNormal><FONT color=navy size=2 face=Arial><SPAN
style="FONT-FAMILY: Arial; COLOR: navy; FONT-SIZE: 10pt"><o:p> </o:p></SPAN></FONT></P>
<DIV>
<DIV style="TEXT-ALIGN: center" class=MsoNormal align=center><FONT size=3
face="Times New Roman"><SPAN style="FONT-SIZE: 12pt">
<HR tabIndex=-1 align=center SIZE=2 width="100%">
</SPAN></FONT></DIV>
<P class=MsoNormal><B><FONT size=2 face=Tahoma><SPAN
style="FONT-FAMILY: Tahoma; FONT-SIZE: 10pt; FONT-WEIGHT: bold">From:</SPAN></FONT></B><FONT
size=2 face=Tahoma><SPAN style="FONT-FAMILY: Tahoma; FONT-SIZE: 10pt">
vpn-help-bounces@lists.shrew.net [mailto:vpn-help-bounces@lists.shrew.net]
<B><SPAN style="FONT-WEIGHT: bold">On Behalf Of </SPAN></B>Mike
Crowe<BR><B><SPAN style="FONT-WEIGHT: bold">Sent:</SPAN></B> Wednesday, December
09, 2009 10:34 PM<BR><B><SPAN style="FONT-WEIGHT: bold">To:</SPAN></B>
vpn-help@lists.shrew.net<BR><B><SPAN
style="FONT-WEIGHT: bold">Subject:</SPAN></B> [Vpn-help] Help configuring
Netgear FVX538 router</SPAN></FONT><o:p></o:p></P></DIV>
<P class=MsoNormal><FONT size=3 face="Times New Roman"><SPAN
style="FONT-SIZE: 12pt"><o:p> </o:p></SPAN></FONT></P>
<P style="MARGIN-BOTTOM: 12pt" class=MsoNormal><FONT size=3
face="Times New Roman"><SPAN style="FONT-SIZE: 12pt">Hi folks,<BR><BR>I'm
following the instructions at <A
href="http://www.shrew.net/support/wiki/HowtoNetgear"
target=_blank>http://www.shrew.net/support/wiki/HowtoNetgear</A>, and I can't
seem to get the shrew client to connect. When I try an initiate a
connection, I repeatedly see:<BR><BR>09/12/09 16:14:45 -> : send IKE packet
<A href="http://192.168.1.15:500" target=_blank>192.168.1.15:500</A> ->
XX.XXX.XXX.198:500 ( 1177 bytes )<BR>09/12/09 16:14:45 DB : phase1 resend event
scheduled ( ref count = 2 )<BR>09/12/09 16:14:50 -> : resend 1 phase1
packet(s) <A href="http://192.168.1.15:500" target=_blank>192.168.1.15:500</A>
-> XX.XXX.XXX.198:500<BR><BR>(full log below). If I look at this, it
almost appears that the Netgear isn't listening on port 500. Could that be
possible?<BR><BR>Based on this setup, two questions:<BR><BR>1) I don't
have to set up a VPN policy, right?<BR>2) I don't have to adjust any port
forwarding or other rules, right? I don't have any port 500 rules in place
now.<BR><BR><BR><BR>09/12/09 16:10:31 ## : IKE Daemon, ver 2.1.5<BR>09/12/09
16:10:31 ## : Copyright 2009 Shrew Soft Inc.<BR>09/12/09 16:10:31 ## : This
product linked OpenSSL 0.9.8h 28 May 2008<BR>09/12/09 16:10:31 ii : opened
'C:\Program Files\ShrewSoft\VPN Client\debug\iked.log'<BR>09/12/09 16:10:31 ii :
rebuilding vnet device list ...<BR>09/12/09 16:10:31 ii : device ROOT\VNET\0000
disabled<BR>09/12/09 16:10:31 ii : network process thread begin ...<BR>09/12/09
16:10:31 ii : ipc server process thread begin ...<BR>09/12/09 16:10:31 ii :
pfkey process thread begin ...<BR>09/12/09 16:10:33 ii : ipc client process
thread begin ...<BR>09/12/09 16:10:33 <A : peer config add
message<BR>09/12/09 16:10:33 DB : peer added ( obj count = 1 )<BR>09/12/09
16:10:33 ii : local address 192.168.1.15 selected for peer<BR>09/12/09 16:10:33
DB : tunnel added ( obj count = 1 )<BR>09/12/09 16:10:33 <A : proposal config
message<BR>09/12/09 16:10:33 <A : proposal config message<BR>09/12/09
16:10:33 <A : client config message<BR>09/12/09 16:10:33 <A : xauth
username message<BR>09/12/09 16:10:33 <A : xauth password message<BR>09/12/09
16:10:33 <A : local id '<A href="http://vpn.zipitwireless.com"
target=_blank>vpn.zipitwireless.com</A>' message<BR>09/12/09 16:10:33 <A :
preshared key message<BR>09/12/09 16:10:33 <A : remote resource
message<BR>09/12/09 16:10:33 <A : peer tunnel enable message<BR>09/12/09
16:10:33 DB : new phase1 ( ISAKMP initiator )<BR>09/12/09 16:10:33 DB : exchange
type is aggressive<BR>09/12/09 16:10:33 DB : <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> <-> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:10:33 DB :
779787518ff0cc3a:0000000000000000<BR>09/12/09 16:10:33 DB : phase1 added ( obj
count = 1 )<BR>09/12/09 16:10:33 >> : security association
payload<BR>09/12/09 16:10:33 >> : - proposal #1 payload <BR>09/12/09
16:10:33 >> : -- transform #1 payload <BR>09/12/09 16:10:33 >> : --
transform #2 payload <BR>09/12/09 16:10:33 >> : -- transform #3 payload
<BR>09/12/09 16:10:33 >> : -- transform #4 payload <BR>09/12/09 16:10:33
>> : -- transform #5 payload <BR>09/12/09 16:10:33 >> : -- transform
#6 payload <BR>09/12/09 16:10:33 >> : -- transform #7 payload <BR>09/12/09
16:10:33 >> : -- transform #8 payload <BR>09/12/09 16:10:33 >> : --
transform #9 payload <BR>09/12/09 16:10:33 >> : -- transform #10 payload
<BR>09/12/09 16:10:33 >> : -- transform #11 payload <BR>09/12/09 16:10:33
>> : -- transform #12 payload <BR>09/12/09 16:10:33 >> : --
transform #13 payload <BR>09/12/09 16:10:33 >> : -- transform #14 payload
<BR>09/12/09 16:10:33 >> : -- transform #15 payload <BR>09/12/09 16:10:33
>> : -- transform #16 payload <BR>09/12/09 16:10:33 >> : --
transform #17 payload <BR>09/12/09 16:10:33 >> : -- transform #18 payload
<BR>09/12/09 16:10:33 >> : key exchange payload<BR>09/12/09 16:10:33
>> : nonce payload<BR>09/12/09 16:10:33 >> : identification
payload<BR>09/12/09 16:10:33 >> : vendor id payload<BR>09/12/09 16:10:33
ii : local supports XAUTH<BR>09/12/09 16:10:33 >> : vendor id
payload<BR>09/12/09 16:10:33 ii : local supports nat-t ( draft v00 )<BR>09/12/09
16:10:33 >> : vendor id payload<BR>09/12/09 16:10:33 ii : local supports
nat-t ( draft v01 )<BR>09/12/09 16:10:33 >> : vendor id
payload<BR>09/12/09 16:10:33 ii : local supports nat-t ( draft v02 )<BR>09/12/09
16:10:33 >> : vendor id payload<BR>09/12/09 16:10:33 ii : local supports
nat-t ( draft v03 )<BR>09/12/09 16:10:33 >> : vendor id
payload<BR>09/12/09 16:10:33 ii : local supports nat-t ( rfc )<BR>09/12/09
16:10:33 >> : vendor id payload<BR>09/12/09 16:10:33 ii : local supports
FRAGMENTATION<BR>09/12/09 16:10:33 >> : vendor id payload<BR>09/12/09
16:10:33 ii : local is SHREW SOFT compatible<BR>09/12/09 16:10:33 >> :
vendor id payload<BR>09/12/09 16:10:33 ii : local is NETSCREEN
compatible<BR>09/12/09 16:10:33 >> : vendor id payload<BR>09/12/09
16:10:33 ii : local is SIDEWINDER compatible<BR>09/12/09 16:10:33 >> :
vendor id payload<BR>09/12/09 16:10:33 ii : local is CISCO UNITY
compatible<BR>09/12/09 16:10:33 >= : cookies
779787518ff0cc3a:0000000000000000<BR>09/12/09 16:10:33 >= : message
00000000<BR>09/12/09 16:10:33 -> : send IKE packet <A
href="http://192.168.1.15:500" target=_blank>192.168.1.15:500</A> -> <A
href="http://74.223.161.198:500" target=_blank>74.223.161.198:500</A> ( 1177
bytes )<BR>09/12/09 16:10:33 DB : phase1 resend event scheduled ( ref count = 2
)<BR>09/12/09 16:10:38 -> : resend 1 phase1 packet(s) <A
href="http://192.168.1.15:500" target=_blank>192.168.1.15:500</A> -> <A
href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:10:43 -> : resend 1
phase1 packet(s) <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> -> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:10:48 -> : resend 1
phase1 packet(s) <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> -> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:10:53 ii : resend limit
exceeded for phase1 exchange<BR>09/12/09 16:10:53 ii : phase1 removal before
expire time<BR>09/12/09 16:10:53 DB : phase1 deleted ( obj count = 0
)<BR>09/12/09 16:10:53 DB : policy not found<BR>09/12/09 16:10:53 DB : policy
not found<BR>09/12/09 16:10:53 DB : tunnel stats event canceled ( ref count = 1
)<BR>09/12/09 16:10:53 DB : removing tunnel config references<BR>09/12/09
16:10:53 DB : removing tunnel phase2 references<BR>09/12/09 16:10:53 DB :
removing tunnel phase1 references<BR>09/12/09 16:10:53 DB : tunnel deleted ( obj
count = 0 )<BR>09/12/09 16:10:53 DB : removing all peer tunnel
refrences<BR>09/12/09 16:10:53 DB : peer deleted ( obj count = 0 )<BR>09/12/09
16:10:53 ii : ipc client process thread exit ...<BR>09/12/09 16:13:03 ii : ipc
client process thread begin ...<BR>09/12/09 16:13:03 <A : peer config add
message<BR>09/12/09 16:13:03 DB : peer added ( obj count = 1 )<BR>09/12/09
16:13:03 ii : local address 192.168.1.15 selected for peer<BR>09/12/09 16:13:03
DB : tunnel added ( obj count = 1 )<BR>09/12/09 16:13:03 <A : proposal config
message<BR>09/12/09 16:13:03 <A : proposal config message<BR>09/12/09
16:13:03 <A : client config message<BR>09/12/09 16:13:03 <A : xauth
username message<BR>09/12/09 16:13:03 <A : xauth password message<BR>09/12/09
16:13:03 <A : local id '<A href="http://vpn.zipitwireless.com"
target=_blank>vpn.zipitwireless.com</A>' message<BR>09/12/09 16:13:03 <A :
preshared key message<BR>09/12/09 16:13:03 <A : remote resource
message<BR>09/12/09 16:13:03 <A : peer tunnel enable message<BR>09/12/09
16:13:03 DB : new phase1 ( ISAKMP initiator )<BR>09/12/09 16:13:03 DB : exchange
type is aggressive<BR>09/12/09 16:13:03 DB : <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> <-> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:13:03 DB :
d83d366fe6644d88:0000000000000000<BR>09/12/09 16:13:03 DB : phase1 added ( obj
count = 1 )<BR>09/12/09 16:13:03 >> : security association
payload<BR>09/12/09 16:13:03 >> : - proposal #1 payload <BR>09/12/09
16:13:03 >> : -- transform #1 payload <BR>09/12/09 16:13:03 >> : --
transform #2 payload <BR>09/12/09 16:13:03 >> : -- transform #3 payload
<BR>09/12/09 16:13:03 >> : -- transform #4 payload <BR>09/12/09 16:13:03
>> : -- transform #5 payload <BR>09/12/09 16:13:03 >> : -- transform
#6 payload <BR>09/12/09 16:13:03 >> : -- transform #7 payload <BR>09/12/09
16:13:03 >> : -- transform #8 payload <BR>09/12/09 16:13:03 >> : --
transform #9 payload <BR>09/12/09 16:13:03 >> : -- transform #10 payload
<BR>09/12/09 16:13:03 >> : -- transform #11 payload <BR>09/12/09 16:13:03
>> : -- transform #12 payload <BR>09/12/09 16:13:03 >> : --
transform #13 payload <BR>09/12/09 16:13:03 >> : -- transform #14 payload
<BR>09/12/09 16:13:03 >> : -- transform #15 payload <BR>09/12/09 16:13:03
>> : -- transform #16 payload <BR>09/12/09 16:13:03 >> : --
transform #17 payload <BR>09/12/09 16:13:03 >> : -- transform #18 payload
<BR>09/12/09 16:13:03 >> : key exchange payload<BR>09/12/09 16:13:03
>> : nonce payload<BR>09/12/09 16:13:03 >> : identification
payload<BR>09/12/09 16:13:03 >> : vendor id payload<BR>09/12/09 16:13:03
ii : local supports XAUTH<BR>09/12/09 16:13:03 >> : vendor id
payload<BR>09/12/09 16:13:03 ii : local supports nat-t ( draft v00 )<BR>09/12/09
16:13:03 >> : vendor id payload<BR>09/12/09 16:13:03 ii : local supports
nat-t ( draft v01 )<BR>09/12/09 16:13:03 >> : vendor id
payload<BR>09/12/09 16:13:03 ii : local supports nat-t ( draft v02 )<BR>09/12/09
16:13:03 >> : vendor id payload<BR>09/12/09 16:13:03 ii : local supports
nat-t ( draft v03 )<BR>09/12/09 16:13:03 >> : vendor id
payload<BR>09/12/09 16:13:03 ii : local supports nat-t ( rfc )<BR>09/12/09
16:13:03 >> : vendor id payload<BR>09/12/09 16:13:03 ii : local supports
FRAGMENTATION<BR>09/12/09 16:13:03 >> : vendor id payload<BR>09/12/09
16:13:03 ii : local is SHREW SOFT compatible<BR>09/12/09 16:13:03 >> :
vendor id payload<BR>09/12/09 16:13:03 ii : local is NETSCREEN
compatible<BR>09/12/09 16:13:03 >> : vendor id payload<BR>09/12/09
16:13:03 ii : local is SIDEWINDER compatible<BR>09/12/09 16:13:03 >> :
vendor id payload<BR>09/12/09 16:13:03 ii : local is CISCO UNITY
compatible<BR>09/12/09 16:13:03 >= : cookies
d83d366fe6644d88:0000000000000000<BR>09/12/09 16:13:03 >= : message
00000000<BR>09/12/09 16:13:03 -> : send IKE packet <A
href="http://192.168.1.15:500" target=_blank>192.168.1.15:500</A> -> <A
href="http://74.223.161.198:500" target=_blank>74.223.161.198:500</A> ( 1177
bytes )<BR>09/12/09 16:13:03 DB : phase1 resend event scheduled ( ref count = 2
)<BR>09/12/09 16:13:08 -> : resend 1 phase1 packet(s) <A
href="http://192.168.1.15:500" target=_blank>192.168.1.15:500</A> -> <A
href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:13:13 -> : resend 1
phase1 packet(s) <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> -> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:13:18 -> : resend 1
phase1 packet(s) <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> -> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:13:23 ii : resend limit
exceeded for phase1 exchange<BR>09/12/09 16:13:23 ii : phase1 removal before
expire time<BR>09/12/09 16:13:23 DB : phase1 deleted ( obj count = 0
)<BR>09/12/09 16:13:23 DB : policy not found<BR>09/12/09 16:13:23 DB : policy
not found<BR>09/12/09 16:13:23 DB : tunnel stats event canceled ( ref count = 1
)<BR>09/12/09 16:13:23 DB : removing tunnel config references<BR>09/12/09
16:13:23 DB : removing tunnel phase2 references<BR>09/12/09 16:13:23 DB :
removing tunnel phase1 references<BR>09/12/09 16:13:23 DB : tunnel deleted ( obj
count = 0 )<BR>09/12/09 16:13:23 DB : removing all peer tunnel
refrences<BR>09/12/09 16:13:23 DB : peer deleted ( obj count = 0 )<BR>09/12/09
16:13:23 ii : ipc client process thread exit ...<BR>09/12/09 16:14:45 ii : ipc
client process thread begin ...<BR>09/12/09 16:14:45 <A : peer config add
message<BR>09/12/09 16:14:45 DB : peer added ( obj count = 1 )<BR>09/12/09
16:14:45 ii : local address 192.168.1.15 selected for peer<BR>09/12/09 16:14:45
DB : tunnel added ( obj count = 1 )<BR>09/12/09 16:14:45 <A : proposal config
message<BR>09/12/09 16:14:45 <A : proposal config message<BR>09/12/09
16:14:45 <A : client config message<BR>09/12/09 16:14:45 <A : xauth
username message<BR>09/12/09 16:14:45 <A : xauth password message<BR>09/12/09
16:14:45 <A : local id '<A href="http://vpn.zipitwireless.com"
target=_blank>vpn.zipitwireless.com</A>' message<BR>09/12/09 16:14:45 <A :
preshared key message<BR>09/12/09 16:14:45 <A : remote resource
message<BR>09/12/09 16:14:45 <A : peer tunnel enable message<BR>09/12/09
16:14:45 DB : new phase1 ( ISAKMP initiator )<BR>09/12/09 16:14:45 DB : exchange
type is aggressive<BR>09/12/09 16:14:45 DB : <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> <-> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:14:45 DB :
76b900f17cca669d:0000000000000000<BR>09/12/09 16:14:45 DB : phase1 added ( obj
count = 1 )<BR>09/12/09 16:14:45 >> : security association
payload<BR>09/12/09 16:14:45 >> : - proposal #1 payload <BR>09/12/09
16:14:45 >> : -- transform #1 payload <BR>09/12/09 16:14:45 >> : --
transform #2 payload <BR>09/12/09 16:14:45 >> : -- transform #3 payload
<BR>09/12/09 16:14:45 >> : -- transform #4 payload <BR>09/12/09 16:14:45
>> : -- transform #5 payload <BR>09/12/09 16:14:45 >> : -- transform
#6 payload <BR>09/12/09 16:14:45 >> : -- transform #7 payload <BR>09/12/09
16:14:45 >> : -- transform #8 payload <BR>09/12/09 16:14:45 >> : --
transform #9 payload <BR>09/12/09 16:14:45 >> : -- transform #10 payload
<BR>09/12/09 16:14:45 >> : -- transform #11 payload <BR>09/12/09 16:14:45
>> : -- transform #12 payload <BR>09/12/09 16:14:45 >> : --
transform #13 payload <BR>09/12/09 16:14:45 >> : -- transform #14 payload
<BR>09/12/09 16:14:45 >> : -- transform #15 payload <BR>09/12/09 16:14:45
>> : -- transform #16 payload <BR>09/12/09 16:14:45 >> : --
transform #17 payload <BR>09/12/09 16:14:45 >> : -- transform #18 payload
<BR>09/12/09 16:14:45 >> : key exchange payload<BR>09/12/09 16:14:45
>> : nonce payload<BR>09/12/09 16:14:45 >> : identification
payload<BR>09/12/09 16:14:45 >> : vendor id payload<BR>09/12/09 16:14:45
ii : local supports XAUTH<BR>09/12/09 16:14:45 >> : vendor id
payload<BR>09/12/09 16:14:45 ii : local supports nat-t ( draft v00 )<BR>09/12/09
16:14:45 >> : vendor id payload<BR>09/12/09 16:14:45 ii : local supports
nat-t ( draft v01 )<BR>09/12/09 16:14:45 >> : vendor id
payload<BR>09/12/09 16:14:45 ii : local supports nat-t ( draft v02 )<BR>09/12/09
16:14:45 >> : vendor id payload<BR>09/12/09 16:14:45 ii : local supports
nat-t ( draft v03 )<BR>09/12/09 16:14:45 >> : vendor id
payload<BR>09/12/09 16:14:45 ii : local supports nat-t ( rfc )<BR>09/12/09
16:14:45 >> : vendor id payload<BR>09/12/09 16:14:45 ii : local supports
FRAGMENTATION<BR>09/12/09 16:14:45 >> : vendor id payload<BR>09/12/09
16:14:45 ii : local is SHREW SOFT compatible<BR>09/12/09 16:14:45 >> :
vendor id payload<BR>09/12/09 16:14:45 ii : local is NETSCREEN
compatible<BR>09/12/09 16:14:45 >> : vendor id payload<BR>09/12/09
16:14:45 ii : local is SIDEWINDER compatible<BR>09/12/09 16:14:45 >> :
vendor id payload<BR>09/12/09 16:14:45 ii : local is CISCO UNITY
compatible<BR>09/12/09 16:14:45 >= : cookies
76b900f17cca669d:0000000000000000<BR>09/12/09 16:14:45 >= : message
00000000<BR>09/12/09 16:14:45 -> : send IKE packet <A
href="http://192.168.1.15:500" target=_blank>192.168.1.15:500</A> -> <A
href="http://74.223.161.198:500" target=_blank>74.223.161.198:500</A> ( 1177
bytes )<BR>09/12/09 16:14:45 DB : phase1 resend event scheduled ( ref count = 2
)<BR>09/12/09 16:14:50 -> : resend 1 phase1 packet(s) <A
href="http://192.168.1.15:500" target=_blank>192.168.1.15:500</A> -> <A
href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:14:55 -> : resend 1
phase1 packet(s) <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> -> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:15:00 -> : resend 1
phase1 packet(s) <A href="http://192.168.1.15:500"
target=_blank>192.168.1.15:500</A> -> <A href="http://74.223.161.198:500"
target=_blank>74.223.161.198:500</A><BR>09/12/09 16:15:05 ii : resend limit
exceeded for phase1 exchange<BR>09/12/09 16:15:05 ii : phase1 removal before
expire time<BR>09/12/09 16:15:05 DB : phase1 deleted ( obj count = 0
)<BR>09/12/09 16:15:05 DB : policy not found<BR>09/12/09 16:15:05 DB : policy
not found<BR>09/12/09 16:15:05 DB : tunnel stats event canceled ( ref count = 1
)<BR>09/12/09 16:15:05 DB : removing tunnel config references<BR>09/12/09
16:15:05 DB : removing tunnel phase2 references<BR>09/12/09 16:15:05 DB :
removing tunnel phase1 references<BR>09/12/09 16:15:05 DB : tunnel deleted ( obj
count = 0 )<BR>09/12/09 16:15:06 DB : removing all peer tunnel
refrences<BR>09/12/09 16:15:06 DB : peer deleted ( obj count = 0 )<BR>09/12/09
16:15:06 ii : ipc client process thread exit
...<o:p></o:p></SPAN></FONT></P></DIV>
<P>
<HR>
<P></P>_______________________________________________<BR>vpn-help mailing
list<BR>vpn-help@lists.shrew.net<BR>http://lists.shrew.net/mailman/listinfo/vpn-help<BR></BODY></HTML>