Had this problem all day yesterday. Have you got licences on the GnatBox and are they accepted as valid. Basically I could connect one, then it wouldn't reconnect or connect a new user. The licences where getting held for a long period of time - 10 minutes plus - and the firewall wouldn't let go of them. Got the info by reading the syslog output - wasn't any other warning anywhere.
Having installed licences properly I can now get it to work. The only other option you have is that the Phase II data types are the not same in the VPN object Jordi Vila wrote: > Hello there, > > I'm trying to establish a VPN connection between a GTA Mobile VPN Client, > version 2.51.015 and a GB-OS 3.7.0. It does not work. The cronology of > events does not follow any of the examples that appear on the GB-OS VPN > Gateway & GTA Mobile VPN Client Option Guide manual. Phase I goes OK, but > phase II does not start the VPN tunnel. On the Firewall side, no messages > appear on the log. The messages that appear on the client are the following > ones: > > 125907 Default (SA GTDBcn-P1) SEND phase 1 Aggressive Mode [SA] [KEY_EXCH] > [NONCE] [ID] [VID] [VID] [VID] [VID] > 125907 Default (SA GTDBcn-P1) RECV phase 1 Aggressive Mode [HASH] [SA] > [KEY_EXCH] [NONCE] [ID] [NAT_D] [NAT_D] [VID] [VID] > 125907 Default (SA GTDBcn-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] > [NAT_D] > 125907 Default phase 1 done: initiator id [EMAIL PROTECTED], responder id > 10.10.108.50 > 125907 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode [HASH] [SA] > [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA] > 125907 Default RECV Informational [HASH] [NOTIFY] > 125914 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode [HASH] [SA] > [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA] > 125923 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode [HASH] [SA] > [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA] > 125934 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode [HASH] [SA] > [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA] > 125937 Default SEND Informational [HASH] [NOTIFY] > 125937 Default RECV Informational [HASH] [NOTIFY] > 125937 Default RECV Informational [HASH] [NOTIFY] > 125937 Default SEND Informational [HASH] [NOTIFY] > 125947 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode [HASH] [SA] > [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA] > 130002 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode [HASH] [SA] > [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA] > 130002 Default transport_send_messages: giving up on message 00D4E218 > 130007 Default RECV Informational [HASH] [NOTIFY] > 130007 Default SEND Informational [HASH] [NOTIFY] > ... > And so on with SEND Informational... > > Googleing for any advice on Internet, I've found this message > > http://www.monkey.org/openbsd/archive/misc/0409/msg00772.html > > It talks about the Quick mode exchange, and the NAT_OA payload. There can be > any relation with my issue and this information ? > > Any other advice about how to make the connection work ? > > > Thanks in advance, yours faithfully > > > Jordi Vila Mas > Responsable Ticnico > > GTD SISTEMAS DE INFORMACISN > Pg. Garcia F`ria, 17 E-08005 Barcelona > Tel.: +34 934 939 300 Fax: +34 934 939 302 > www.gtd.es - [EMAIL PROTECTED] > > Este mensaje es confidencial. Cualquier distribucisn, uso o copia del > mensaje o de la informacisn en el contenido por otras personas distintas de > los destinatarios esta prohibida. Si usted recibe este mensaje por error, > por favor comunmquemelo inmediatamente mediante reenvmo del mensaje o por > otro medio. > This e-mail may be confidential. Any distribution, use or copying of this > e-mail or the information it contains by other than an intended recipient is > unauthorized. If you received this e-mail in error, please advise me (by > return e-mail or otherwise) immediately. > Ce courriel est confidentiel. Toute diffusion, utilisation ou copie de ce > message ou des renseignements qu'il contient par une personne autre que les > destinataires disignis est interdite. Si vous recevez ce courriel par > erreur, veuillez m'en aviser immidiatement, par retour de courriel ou par un > autre moyen. > > ------------------------------------------------------ > To unsubscribe: [EMAIL PROTECTED] > For additional commands: [EMAIL PROTECTED] > Archive: http://archives.gnatbox.com/gb-users/ > -- Ben Tyson-Norrman DTV / IT Manager Landline: 0207 665 4460 Mobile: 07976 230429 GNUPG KEY: 82D04531 ------------------------------------------------------ To unsubscribe: [EMAIL PROTECTED] For additional commands: [EMAIL PROTECTED] Archive: http://archives.gnatbox.com/gb-users/
