[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ISAKMP problem

To: tech@openbsd.org
Subject: ISAKMP problem
From: "Trevor R.H. Clarke" <retrev@csh.rit.edu>
Date: Mon, 07 Feb 2000 11:33:07 -0500
Content-ID: <5889.949941186.1@mail.csh.rit.edu>

I'm trying to set up a VPN from my home network (behind a nat firewall and a
cable modem) to my OBSD machine at work. I've used the sample policy and config
files from anoncvs and changed the IP addesses and shared secret. I run
isakmpd -d on the firewall and it sits there waiting for a connection (no msgs
yet). I run isakmpd -d on the otehr end of the tunnel and after a few seconds,
I get errors on both machines. The firewall errors are:

113107.795446 Default exchange_run: unexpected payload HASH
113107.804713 Default exchange_run: unexpected payload HASH

The machine at work has the following errors:

113003.753941 Default dropped message from 24.93.15.85 port 500 due to
notification type NO_PROPOSAL_CHOSEN
113003.755689 Default responder_recv_HASH_SA_NONCE: KEY_EXCH payload without a
group desc. attribute
113003.755745 Default dropped message from 24.93.15.85 port 500 due to
notification type NO_PROPOSAL_CHOSEN
113003.756052 Default group_get: group ID (0) out of range

After a few seconds, these repeat. Any Idea what is wrong?
------------------
Trevor R.H. Clarke                     Computer Science House
Rochester Institute of Technology      Systems Programmer for ISC
retrev@csh.rit.edu                     trcsys@rit.edu
http://www.csh.rit.edu/~retrev/        finger retrev@csh.rit.edu for PGP key

Follow-Ups:
- Re: ISAKMP problem
  - From: "Luke Renn" <lrenn@etci.com>

Prev by Date: Re: panic: ahc0 (AIC-7770)
Next by Date: Re: ISAKMP problem
Prev by thread: Re: panic: ahc0 (AIC-7770)
Next by thread: Re: ISAKMP problem
Index(es):
- Date
- Thread