Re: [Efw-user] IPSec failing after some time
Look at time out values within the DSL modem, it's possible that it's renewing ports or something for forwarding. Hard to say how the modem is doing forwarding though. On Wed, Jun 12, 2013 at 10:40 AM, Lorenzo Milesi lorenzo.mil...@yetopen.itwrote: When you say NAT'd IP, you mean that the IP address on your Endian isn't the public? If so, the VPN probably won't work properly. IPSec isn't meant to be NAT'd... and isn't NAT-traversal the solution to natted vpn? -- Lorenzo Milesi - lorenzo.mil...@yetopen.it YetOpen S.r.l. - http://www.yetopen.it/ Via Carlo Torri Tarelli 19 - 23900 Lecco - ITALY - Tel 0341 220 205 - Fax 178 6070 222 GPG/PGP Key-Id: 0xE704E230 - http://keyserver.linux.it D.Lgs. 196/2003 Si avverte che tutte le informazioni contenute in questo messaggio sono riservate ed a uso esclusivo del destinatario. Nel caso in cui questo messaggio Le fosse pervenuto per errore, La invitiamo ad eliminarlo senza copiarlo, a non inoltrarlo a terzi e ad avvertirci non appena possibile. Grazie. -- This SF.net email is sponsored by Windows: Build for Windows Store. http://p.sf.net/sfu/windows-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- This SF.net email is sponsored by Windows: Build for Windows Store. http://p.sf.net/sfu/windows-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] IPSec failing after some time
Hi. I have a 2.5.1 installation which works fine. Last week we moved from a public IP to a NATted one, and since then the IPSec VPN isn't working anymore! Not really: it works for one hour or so, and after that time it drops and I find the following error in messages: pluto (25362) initial Main Mode message received on EFW_WAN_IP:500 but no connection has been authorized with policy=PSK this is weird because as I said for one hour or so it works great. What can cause this? So strange, it has been working great before the DSL change... thanks -- Lorenzo Milesi - lorenzo.mil...@yetopen.it YetOpen S.r.l. - http://www.yetopen.it/ Via Carlo Torri Tarelli 19 - 23900 Lecco - ITALY - Tel 0341 220 205 - Fax 178 6070 222 GPG/PGP Key-Id: 0xE704E230 - http://keyserver.linux.it D.Lgs. 196/2003 Si avverte che tutte le informazioni contenute in questo messaggio sono riservate ed a uso esclusivo del destinatario. Nel caso in cui questo messaggio Le fosse pervenuto per errore, La invitiamo ad eliminarlo senza copiarlo, a non inoltrarlo a terzi e ad avvertirci non appena possibile. Grazie. -- Get 100% visibility into Java/.NET code with AppDynamics Lite It's a free troubleshooting tool designed for production Get down to code-level detail for bottlenecks, with 2% overhead. Download for free and get started troubleshooting in minutes. http://p.sf.net/sfu/appdyn_d2d_ap2 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] IPSec failing after some time
When you say NAT'd IP, you mean that the IP address on your Endian isn't the public? If so, the VPN probably won't work properly. IPSec isn't meant to be NAT'd... On Fri, May 31, 2013 at 12:04 PM, Lorenzo Milesi lorenzo.mil...@yetopen.itwrote: Hi. I have a 2.5.1 installation which works fine. Last week we moved from a public IP to a NATted one, and since then the IPSec VPN isn't working anymore! Not really: it works for one hour or so, and after that time it drops and I find the following error in messages: pluto (25362) initial Main Mode message received on EFW_WAN_IP:500 but no connection has been authorized with policy=PSK this is weird because as I said for one hour or so it works great. What can cause this? So strange, it has been working great before the DSL change... thanks -- Lorenzo Milesi - lorenzo.mil...@yetopen.it YetOpen S.r.l. - http://www.yetopen.it/ Via Carlo Torri Tarelli 19 - 23900 Lecco - ITALY - Tel 0341 220 205 - Fax 178 6070 222 GPG/PGP Key-Id: 0xE704E230 - http://keyserver.linux.it D.Lgs. 196/2003 Si avverte che tutte le informazioni contenute in questo messaggio sono riservate ed a uso esclusivo del destinatario. Nel caso in cui questo messaggio Le fosse pervenuto per errore, La invitiamo ad eliminarlo senza copiarlo, a non inoltrarlo a terzi e ad avvertirci non appena possibile. Grazie. -- Get 100% visibility into Java/.NET code with AppDynamics Lite It's a free troubleshooting tool designed for production Get down to code-level detail for bottlenecks, with 2% overhead. Download for free and get started troubleshooting in minutes. http://p.sf.net/sfu/appdyn_d2d_ap2 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Get 100% visibility into Java/.NET code with AppDynamics Lite It's a free troubleshooting tool designed for production Get down to code-level detail for bottlenecks, with 2% overhead. Download for free and get started troubleshooting in minutes. http://p.sf.net/sfu/appdyn_d2d_ap2___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user