[rlug] Re: VPN CISCO - Linux

Laurentiu Vasiescu Mon, 07 Feb 2005 04:03:51 -0800

don't shoot, dar de cum l-am dat jos si l-am "configurat" m-am si lovit de o 
"mica" problema:


asta e conful:
config setup
        interfaces=%defaultroute
        klipsdebug=none
        plutodebug=none

conn US
        type=tunnel
        left=%defaultroute
        leftsubnet=192.168.1.0/24
        right=x.x.x.2
        rightsubnet=192.168.100.0/24
        esp=3des-md5-96
        keyexchange=ike
        pfs=no
        auto=start


Precizez ca NU e up partea de right, eu sunt in left.

in loguri:
Feb  7 13:56:17 ns ipsec_setup: ...Openswan IPsec started
Feb  7 13:56:17 ns ipsec_setup: Starting Openswan IPsec 2.3.0...
Feb  7 13:56:17 ns ipsec_setup: insmod 
/lib/modules/2.6.9-1.681_FC3/kernel/net/key/af_key.ko
Feb  7 13:56:17 ns ipsec_setup: insmod 
/lib/modules/2.6.9-1.681_FC3/kernel/net/ipv4/xfrm4_tunnel.ko
Feb  7 13:57:10 ns ipsec__plutorun: 104 "US" #1: STATE_MAIN_I1: initiate
Feb  7 13:57:10 ns ipsec__plutorun: ...could not start conn "US"
Feb  7 13:57:11 ns kernel: NET: Unregistered protocol family 15
Feb  7 13:57:11 ns ipsec_setup: ...Openswan IPsec stopped
Feb  7 13:57:11 ns ipsec_setup: Stopping Openswan IPsec...


Ce face: de cum il pornesc, imi omoara, cred, rutele pe el - imi taie 
ssh-ul, etc (de pe reteaua interna - 192.168.100.0/24) - nu pot sa ma uit 
local EXACT ce face, pt ca nu am monitor pe el.
Ca sa fiu sigur ca nu il restartez din ctrl+alt+del:

/etc/init.d/ipsec start && sleep 2 && /etc/init.d/ipsec stop

Sincer nu am idee ce e cu protocol family 15

Partea proasta e ca nici nu pot sa il pun pe debug si sa ii tot dau 
start/restart ca imi sar altii in cap :(.

orice idee este bine venita.





----- Original Message ----- 
From: "Laurentiu Vasiescu" <[EMAIL PROTECTED]>
To: <[email protected]>
Sent: Monday, February 07, 2005 11:59 AM
Subject: [rlug] Re: VPN CISCO - Linux


>
> merci :D
>
>
> ----- Original Message ----- 
> From: "Vali Dragnuta" <[EMAIL PROTECTED]>
> To: <[email protected]>
> Sent: Monday, February 07, 2005 11:11 AM
> Subject: [rlug] Re: VPN CISCO - Linux
>
>
>> Probabil ca omul vrea si criptare, nu doar un tunel.
>> Raspunsul era openswan.
>>
>>
>> --- 
>> Detalii despre listele noastre de mail: http://www.lug.ro/
>>
>
> --- 
> Detalii despre listele noastre de mail: http://www.lug.ro/
> 


--- 
Detalii despre listele noastre de mail: http://www.lug.ro/

[rlug] Re: VPN CISCO - Linux

Raspunde prin e-mail lui