<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Tahoma
}
--></style></head>
<body class='hmmessage'><div dir='ltr'>
Update:<div><span style="font-size: 10pt; ">Wireshark shows an ARP request every time I click on 'Connect', and it shows the response come back from the router.</span></div><div><span style="font-size: 10pt; "><br></span></div><div>I'm not at all familiar with the way Windows Network Devices work, but does that mean the virtual network adapter is beginning the connection process (in finding the target IP), but not actually sending any IPSec packets through?</div><div><br></div><div>Would that suggest it's a bug in the virtual network adapter?</div><div><br></div><div>Greg</div><div><br><div><div id="SkyDrivePlaceholder"></div><hr id="stopSpelling">From: taintedmarmot@hotmail.com<br>To: vpn-help@lists.shrew.net<br>Date: Sun, 16 Sep 2012 19:41:43 +0000<br>Subject: [vpn-help] Win7 x64 negotiation timeout - no packets sent<br><br>
<style><!--
.ExternalClass .ecxhmmessage P
{padding:0px;}
.ExternalClass body.ecxhmmessage
{font-size:10pt;font-family:Tahoma;}
--></style>
<div dir="ltr">
Hi,<div><br></div><div>I'm using Shrew 2.2 beta2 to connect from Win7 x64 to a Netgear FVS318v3, but I'm getting a negotiation timeout.</div><div><br></div><div>The same machine (dual boot) under Ubuntu 12.04 connects fine with 2.2beta2 client.</div><div><br></div><div><b>What I've tried:</b></div><div>I exported shrew configuration from working Ubuntu client and imported it into Win7 client, so shouldn't be any problem there.</div><div><span style="font-size:10pt">I've switched off both ZoneAlarm and Windows Firewall. No joy.</span></div><div>I've tried running VPN Access Manager as Administrator. No joy.</div><div><div>In case it's relevant: previously had openVPN and VirtualBox installed. I uninstalled them, rebooted Windows, uninstalled Shrew, rebooted Windows, reinstalled Shrew, rebooted Windows. Still no joy.</div><br class="ecxApple-interchange-newline"></div><div><b>Other information:</b></div><div>Local Area Connection Properties dialog does have a 'Shrew Soft Lightweight Filter' in the Properties dialog, and the checkbox next to it is ticked.</div><div><span style="font-size:10pt">Task Manager lists the following related processes as running: ipseca.exe, ipsecc.exe, ipsect.exe</span></div><div><span style="font-size:10pt">When trying to connect, Wireshark (running on the same Win7 box) doesn't detect any UDP/TCP packets on port 500, nor any packets on isakmp filter (but does detect other packets e.g. web browsing).</span></div><div>I do see isakmp packets on Ubuntu Wireshark when connecting from Ubuntu shrew client.</div><div>The FVS318 and Win7 box are on different subnets, but the connection works under Ubuntu from same machine, so I doubt the router is the problem.</div><div><br></div><div>So it seems something under Win7 x64 is stopping the packets getting out onto the network, but I'm at a loss to explain it.</div><div><br></div><div><div>I've been Googling for hours, but can't find a solution. Any help anyone could give would be gratefully received.</div><div><br></div><div>Greg</div></div><div><br></div><div><b>VPN Connect log:</b></div><div><div>attached to key daemon ...</div><div>peer configured</div><div>iskamp proposal configured</div><div>esp proposal configured</div><div>client configured</div><div>local id configured</div><div>remote id configured</div><div>pre-shared key configured</div><div>bringing up tunnel ...</div><div>negotiation timout occurred</div><div>tunnel disabled</div><div>detached from key daemon</div></div><div><br></div><div><b>VPN Trace IKE Service log:</b></div><div><div>12/09/16 20:09:09 ii : ipc client process thread begin ...</div><div>12/09/16 20:09:09 <A : peer config add message</div><div>12/09/16 20:09:09 <A : proposal config message</div><div>12/09/16 20:09:09 <A : proposal config message</div><div>12/09/16 20:09:09 <A : client config message</div><div>12/09/16 20:09:09 <A : local id 'fvs_local_grg' message</div><div>12/09/16 20:09:09 <A : preshared key message</div><div>12/09/16 20:09:09 <A : remote resource message</div><div>12/09/16 20:09:09 <A : remote resource message</div><div>12/09/16 20:09:09 <A : remote resource message</div><div>12/09/16 20:09:09 <A : peer tunnel enable message</div><div>12/09/16 20:09:09 ii : local is SHREW SOFT compatible</div><div>12/09/16 20:09:09 ii : local is NETSCREEN compatible</div><div>12/09/16 20:09:09 ii : local is SIDEWINDER compatible</div><div>12/09/16 20:09:09 ii : local is CISCO UNITY compatible</div><div>12/09/16 20:09:09 >= : cookies 8219a4a29c1c6360:0000000000000000</div><div>12/09/16 20:09:09 >= : message 00000000</div><div>12/09/16 20:09:14 -> : resend 1 phase1 packet(s) [0/2] 10.0.0.10:500 -> 192.168.0.100:500</div><div>12/09/16 20:09:19 -> : resend 1 phase1 packet(s) [1/2] 10.0.0.10:500 -> 192.168.0.100:500</div><div>12/09/16 20:09:24 -> : resend 1 phase1 packet(s) [2/2] 10.0.0.10:500 -> 192.168.0.100:500</div><div>12/09/16 20:09:29 ii : resend limit exceeded for phase1 exchange</div><div>12/09/16 20:09:29 ii : phase1 removal before expire time</div><div>12/09/16 20:09:29 DB : removing tunnel config references</div><div>12/09/16 20:09:29 DB : removing tunnel phase2 references</div><div>12/09/16 20:09:29 DB : removing tunnel phase1 references</div><div>12/09/16 20:09:29 DB : removing all peer tunnel refrences</div><div>12/09/16 20:09:29 ii : ipc client process thread exit ...</div></div><div><br></div><div><br></div><div><br></div><div><br></div> </div>
<br>_______________________________________________
vpn-help mailing list
vpn-help@lists.shrew.net
http://lists.shrew.net/mailman/listinfo/vpn-help</div></div> </div></body>
</html>