Date: Tue, 22 Jun 2010 17:52:51 +0200 From: <ralf@dzie-ciuch.pl> To: VANHULLEBUS Yvan <vanhu@FreeBSD.org> Cc: freebsd-net@freebsd.org Subject: Re: vpn trouble Message-ID: <6caa9895ae1710b9f48a227116a4340c@ewipo.pl> In-Reply-To: <20100622153541.GA72211@zeninc.net> References: <87260c422232fa7409a4b374341dd106@ewipo.pl> <20100622143543.GA72020@zeninc.net> <c5781e9db1e6339b5b23c0c403c68d9a@ewipo.pl> <20100622153541.GA72211@zeninc.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Hmmm, aggressive mode wasn't help :( Still I got only negotiation, so I try to send packets but I don't receive it at all. On my server 78.x.x.x I got ipfw allow all from any to any. On the other side 95.x.x.x they tell me that they do it everything right - only I can't connect :( Maybe I don't set route correctly? Is this mean that I don't receive password from other side? ERROR: phase1 negotiation failed due to time up. 5d300bcf894a18f5:0000000000000000 Best regards Ralf On Tue, 22 Jun 2010 17:35:42 +0200, VANHULLEBUS Yvan <vanhu@FreeBSD.org> wrote: > On Tue, Jun 22, 2010 at 05:11:58PM +0200, ralf@dzie-ciuch.pl wrote: >> >> Hi, >> >> Thanks for help >> >> I new on it and I never use VPN, only I have to do it. >> Please tell me how to check peer's log? I dont know how to check it? > > If that's really a firewall-1 as said in comments, I just don't > know.... > > >> Have I change my racoon.conf exchange to aggressive, main? > > To just have it work, looks like you should just set "aggressive" > (stilla according to the comment in your configuration !!!). > > To have a correct setup with a correct security level, you should > change peer's configuration to use main mode, and just keep "main" as > exchange_mode in racoon's conf ! > > >> I forgot send last time - on the other side is cisco router, maybe this >> is >> important > > Ok, so this is not a firewall-1, but I still don't know how to get the > configuration or how to get logs...... > > > Yvan. > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6caa9895ae1710b9f48a227116a4340c>