ich habe bereits zwei IPcop Boxen zur Standortverbindung erfolgreich im Einsatz. Nun möchte ich auch noch gerne meinen Heimarbeitsplatz verbinden. Hier habe ich allerdings SuSE 8.2 FreeS/WAN version: 1.99 im Einsatz was ich auch nicht ändern möchte. Ich habe bisher über das Webmin Modul für FreeS/WAN alles soweit konfiguriert und auch noch mal manuell überprüft. Die Verbindung startet anscheinen auch (siehe Logauszug). Nun habe ich aber nicht wirklich einen Verbindung, anpingen und dergleichen hat keinen Erfolg.
Hat vielleicht noch jemand ne Idee die mir helfen könnte ?
Gruß, IxxZett !
Jul 5 12:22:46 linux ipsec_setup: ...FreeS/WAN IPsec started Jul 5 12:22:46 linux ipsec_setup: ..done Jul 5 12:22:46 linux pluto[8962]: Changing to directory '/etc/ipsec.d/cacerts' Jul 5 12:22:46 linux pluto[8962]: Warning: empty directory Jul 5 12:22:46 linux pluto[8962]: Changing to directory '/etc/ipsec.d/crls' Jul 5 12:22:46 linux pluto[8962]: Warning: empty directory Jul 5 12:22:46 linux named[1397]: listening on IPv4 interface ppp0, 217.226.76.145#53 Jul 5 12:22:47 linux pluto[8962]: could not open my default X.509 cert file '/etc/x509cert.der' Jul 5 12:22:47 linux named[1397]: binding TCP socket: address in use Jul 5 12:22:47 linux pluto[8962]: OpenPGP certificate file '/etc/pgpcert.pgp' not found Jul 5 12:22:47 linux named[1397]: no longer listening on 192.168.99.1#53 Jul 5 12:22:48 linux pluto[8962]: | from whack: got --esp=3des Jul 5 12:22:48 linux pluto[8962]: | from whack: got --ike=3des Jul 5 12:22:48 linux pluto[8962]: added connection description "DUMK" Jul 5 12:22:48 linux /etc/hotplug/net.agent[8817]: No HW description found ... exiting Jul 5 12:22:48 linux /etc/hotplug/net.agent[8806]: No HW description found ... exiting Jul 5 12:22:48 linux /etc/hotplug/net.agent[8814]: No HW description found ... exiting Jul 5 12:22:49 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.131.89.178 DST=192.168.1.11 LEN=60 TOS=0x00 PREC=0x00 TTL=58 ID=13276 DF PROTO=TCP SPT=25157 DPT=4662 WINDOW=5840 RES=0x00 SYN URGP=0 OPT (020405AC0402080A0830A4180000000001030300) Jul 5 12:22:49 linux pluto[8962]: listening for IKE messages Jul 5 12:22:49 linux pluto[8962]: adding interface ipsec0/ppp0 217.226.76.145 Jul 5 12:22:49 linux pluto[8962]: loading secrets from "/etc/ipsec.secrets" Jul 5 12:22:50 linux /etc/hotplug/net.agent[8799]: No HW description found ... exiting Jul 5 12:22:50 linux pluto[8962]: "DUMK" #1: initiating Main Mode Jul 5 12:22:51 linux pluto[8962]: "DUMK" #1: Peer ID is ID_IPV4_ADDR: '212.202.144.26' Jul 5 12:22:51 linux pluto[8962]: "DUMK" #1: ISAKMP SA established Jul 5 12:22:51 linux pluto[8962]: "DUMK" #2: initiating Quick Mode PSK+ENCRYPT+COMPRESS+TUNNEL+PFS+DISABLEARRIVALCHECK Jul 5 12:22:51 linux pluto[8962]: "DUMK" #2: sent QI2, IPsec SA established Jul 5 12:22:51 linux ipsec__plutorun: 104 "DUMK" #1: STATE_MAIN_I1: initiate Jul 5 12:22:51 linux ipsec__plutorun: 106 "DUMK" #1: STATE_MAIN_I2: sent MI2, expecting MR2 Jul 5 12:22:51 linux ipsec__plutorun: 108 "DUMK" #1: STATE_MAIN_I3: sent MI3, expecting MR3 Jul 5 12:22:51 linux ipsec__plutorun: 004 "DUMK" #1: STATE_MAIN_I4: ISAKMP SA established Jul 5 12:22:51 linux ipsec__plutorun: 112 "DUMK" #2: STATE_QUICK_I1: initiate Jul 5 12:22:51 linux ipsec__plutorun: 004 "DUMK" #2: STATE_QUICK_I2: sent QI2, IPsec SA established Jul 5 12:22:53 linux pluto[8962]: "DUMK" #3: responding to Quick Mode Jul 5 12:22:53 linux pluto[8962]: "DUMK" #4: responding to Quick Mode Jul 5 12:22:53 linux pluto[8962]: "DUMK" #3: IPsec SA established Jul 5 12:22:53 linux pluto[8962]: "DUMK" #4: IPsec SA established Jul 5 12:22:59 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=202.216.58.15 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=4594 DF PROTO=TCP SPT=1655 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402) Jul 5 12:23:00 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=202.216.58.15 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=4613 DF PROTO=TCP SPT=1655 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402) Jul 5 12:23:01 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=202.216.58.15 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=4631 DF PROTO=TCP SPT=1655 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402) Jul 5 12:23:01 linux pluto[8962]: "DUMK" #5: responding to Main Mode Jul 5 12:23:02 linux pluto[8962]: "DUMK" #5: Peer ID is ID_IPV4_ADDR: '212.202.144.26' Jul 5 12:23:02 linux pluto[8962]: "DUMK" #5: sent MR3, ISAKMP SA established Jul 5 12:23:02 linux pluto[8962]: "DUMK" #6: responding to Quick Mode Jul 5 12:23:02 linux pluto[8962]: "DUMK" #7: responding to Quick Mode Jul 5 12:23:03 linux pluto[8962]: "DUMK" #6: IPsec SA established Jul 5 12:23:03 linux pluto[8962]: "DUMK" #7: IPsec SA established Jul 5 12:23:11 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=217.126.107.237 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=108 ID=62982 DF PROTO=TCP SPT=3335 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402) Jul 5 12:23:13 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=217.126.107.237 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=108 ID=63066 DF PROTO=TCP SPT=3335 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402) Jul 5 12:23:14 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=218.13.75.224 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=114 ID=6137 DF PROTO=TCP SPT=2466 DPT=4662 WINDOW=64800 RES=0x00 SYN URGP=0 OPT (020405A001010402) Jul 5 12:23:15 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=217.126.107.237 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=108 ID=63159 DF PROTO=TCP SPT=3335 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402) Jul 5 12:23:16 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=218.13.75.224 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=114 ID=6245 DF PROTO=TCP SPT=2466 DPT=4662 WINDOW=64800 RES=0x00 SYN URGP=0 OPT (020405A001010402) Jul 5 12:23:18 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=218.13.75.224 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=114 ID=6354 DF PROTO=TCP SPT=2466 DPT=4662 WINDOW=64800 RES=0x00 SYN URGP=0 OPT (020405A001010402) Jul 5 12:23:20 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.139.21.146 DST=192.168.1.11 LEN=60 TOS=0x00 PREC=0x00 TTL=58 ID=14799 DF PROTO=TCP SPT=4022 DPT=4662 WINDOW=5840 RES=0x00 SYN URGP=0 OPT (020405AC0402080A00542A960000000001030300) Jul 5 12:23:28 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=213.191.90.206 DST=192.168.1.11 LEN=60 TOS=0x00 PREC=0x00 TTL=56 ID=24823 DF PROTO=TCP SPT=49570 DPT=4662 WINDOW=32768 RES=0x00 SYN URGP=0 OPT (020405AC010303000101080AE721332B00000000) Jul 5 12:23:47 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.143.33.69 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=48640 DF PROTO=TCP SPT=1068 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (0204057A01010402) Jul 5 12:23:47 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.143.33.69 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=48963 DF PROTO=TCP SPT=1068 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (0204057A01010402) Jul 5 12:23:48 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.143.33.69 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=49176 DF PROTO=TCP SPT=1068 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (0204057A01010402)
Dieser Beitrag wurde am 05.07.2003 um 12:35 Uhr von IxxZett editiert.
Um auf dieses Thema zu ANTWORTEN bitte erst » hier kostenlos registrieren!!
ich habe bereits zwei IPcop Boxen zur Standortverbindung erfolgreich im Einsatz. Nun möchte ich auch noch gerne meinen Heimarbeitsplatz verbinden. Hier habe ich allerdings SuSE 8.2 FreeS/WAN version: 1.99 im Einsatz was ich auch nicht ändern möchte. Ich habe bisher über das Webmin Modul für FreeS/WAN alles soweit konfiguriert und auch noch mal manuell überprüft. Die Verbindung startet anscheinen auch (siehe Logauszug). Nun habe ich aber nicht wirklich einen Verbindung, anpingen und dergleichen hat keinen Erfolg.
Hat vielleicht noch jemand ne Idee die mir helfen könnte ?
Gruß, IxxZett !
Jul 5 12:22:46 linux ipsec_setup: ...FreeS/WAN IPsec started
Jul 5 12:22:46 linux ipsec_setup: ..done
Jul 5 12:22:46 linux pluto[8962]: Changing to directory '/etc/ipsec.d/cacerts'
Jul 5 12:22:46 linux pluto[8962]: Warning: empty directory
Jul 5 12:22:46 linux pluto[8962]: Changing to directory '/etc/ipsec.d/crls'
Jul 5 12:22:46 linux pluto[8962]: Warning: empty directory
Jul 5 12:22:46 linux named[1397]: listening on IPv4 interface ppp0, 217.226.76.145#53
Jul 5 12:22:47 linux pluto[8962]: could not open my default X.509 cert file '/etc/x509cert.der'
Jul 5 12:22:47 linux named[1397]: binding TCP socket: address in use
Jul 5 12:22:47 linux pluto[8962]: OpenPGP certificate file '/etc/pgpcert.pgp' not found
Jul 5 12:22:47 linux named[1397]: no longer listening on 192.168.99.1#53
Jul 5 12:22:48 linux pluto[8962]: | from whack: got --esp=3des
Jul 5 12:22:48 linux pluto[8962]: | from whack: got --ike=3des
Jul 5 12:22:48 linux pluto[8962]: added connection description "DUMK"
Jul 5 12:22:48 linux /etc/hotplug/net.agent[8817]: No HW description found ... exiting
Jul 5 12:22:48 linux /etc/hotplug/net.agent[8806]: No HW description found ... exiting
Jul 5 12:22:48 linux /etc/hotplug/net.agent[8814]: No HW description found ... exiting
Jul 5 12:22:49 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.131.89.178 DST=192.168.1.11 LEN=60 TOS=0x00 PREC=0x00 TTL=58 ID=13276 DF PROTO=TCP SPT=25157 DPT=4662 WINDOW=5840 RES=0x00 SYN URGP=0 OPT (020405AC0402080A0830A4180000000001030300)
Jul 5 12:22:49 linux pluto[8962]: listening for IKE messages
Jul 5 12:22:49 linux pluto[8962]: adding interface ipsec0/ppp0 217.226.76.145
Jul 5 12:22:49 linux pluto[8962]: loading secrets from "/etc/ipsec.secrets"
Jul 5 12:22:50 linux /etc/hotplug/net.agent[8799]: No HW description found ... exiting
Jul 5 12:22:50 linux pluto[8962]: "DUMK" #1: initiating Main Mode
Jul 5 12:22:51 linux pluto[8962]: "DUMK" #1: Peer ID is ID_IPV4_ADDR: '212.202.144.26'
Jul 5 12:22:51 linux pluto[8962]: "DUMK" #1: ISAKMP SA established
Jul 5 12:22:51 linux pluto[8962]: "DUMK" #2: initiating Quick Mode PSK+ENCRYPT+COMPRESS+TUNNEL+PFS+DISABLEARRIVALCHECK
Jul 5 12:22:51 linux pluto[8962]: "DUMK" #2: sent QI2, IPsec SA established
Jul 5 12:22:51 linux ipsec__plutorun: 104 "DUMK" #1: STATE_MAIN_I1: initiate
Jul 5 12:22:51 linux ipsec__plutorun: 106 "DUMK" #1: STATE_MAIN_I2: sent MI2, expecting MR2
Jul 5 12:22:51 linux ipsec__plutorun: 108 "DUMK" #1: STATE_MAIN_I3: sent MI3, expecting MR3
Jul 5 12:22:51 linux ipsec__plutorun: 004 "DUMK" #1: STATE_MAIN_I4: ISAKMP SA established
Jul 5 12:22:51 linux ipsec__plutorun: 112 "DUMK" #2: STATE_QUICK_I1: initiate
Jul 5 12:22:51 linux ipsec__plutorun: 004 "DUMK" #2: STATE_QUICK_I2: sent QI2, IPsec SA established
Jul 5 12:22:53 linux pluto[8962]: "DUMK" #3: responding to Quick Mode
Jul 5 12:22:53 linux pluto[8962]: "DUMK" #4: responding to Quick Mode
Jul 5 12:22:53 linux pluto[8962]: "DUMK" #3: IPsec SA established
Jul 5 12:22:53 linux pluto[8962]: "DUMK" #4: IPsec SA established
Jul 5 12:22:59 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=202.216.58.15 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=4594 DF PROTO=TCP SPT=1655 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Jul 5 12:23:00 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=202.216.58.15 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=4613 DF PROTO=TCP SPT=1655 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Jul 5 12:23:01 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=202.216.58.15 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=4631 DF PROTO=TCP SPT=1655 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Jul 5 12:23:01 linux pluto[8962]: "DUMK" #5: responding to Main Mode
Jul 5 12:23:02 linux pluto[8962]: "DUMK" #5: Peer ID is ID_IPV4_ADDR: '212.202.144.26'
Jul 5 12:23:02 linux pluto[8962]: "DUMK" #5: sent MR3, ISAKMP SA established
Jul 5 12:23:02 linux pluto[8962]: "DUMK" #6: responding to Quick Mode
Jul 5 12:23:02 linux pluto[8962]: "DUMK" #7: responding to Quick Mode
Jul 5 12:23:03 linux pluto[8962]: "DUMK" #6: IPsec SA established
Jul 5 12:23:03 linux pluto[8962]: "DUMK" #7: IPsec SA established
Jul 5 12:23:11 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=217.126.107.237 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=108 ID=62982 DF PROTO=TCP SPT=3335 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Jul 5 12:23:13 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=217.126.107.237 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=108 ID=63066 DF PROTO=TCP SPT=3335 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Jul 5 12:23:14 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=218.13.75.224 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=114 ID=6137 DF PROTO=TCP SPT=2466 DPT=4662 WINDOW=64800 RES=0x00 SYN URGP=0 OPT (020405A001010402)
Jul 5 12:23:15 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=217.126.107.237 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=108 ID=63159 DF PROTO=TCP SPT=3335 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
Jul 5 12:23:16 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=218.13.75.224 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=114 ID=6245 DF PROTO=TCP SPT=2466 DPT=4662 WINDOW=64800 RES=0x00 SYN URGP=0 OPT (020405A001010402)
Jul 5 12:23:18 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=218.13.75.224 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=114 ID=6354 DF PROTO=TCP SPT=2466 DPT=4662 WINDOW=64800 RES=0x00 SYN URGP=0 OPT (020405A001010402)
Jul 5 12:23:20 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.139.21.146 DST=192.168.1.11 LEN=60 TOS=0x00 PREC=0x00 TTL=58 ID=14799 DF PROTO=TCP SPT=4022 DPT=4662 WINDOW=5840 RES=0x00 SYN URGP=0 OPT (020405AC0402080A00542A960000000001030300)
Jul 5 12:23:28 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=213.191.90.206 DST=192.168.1.11 LEN=60 TOS=0x00 PREC=0x00 TTL=56 ID=24823 DF PROTO=TCP SPT=49570 DPT=4662 WINDOW=32768 RES=0x00 SYN URGP=0 OPT (020405AC010303000101080AE721332B00000000)
Jul 5 12:23:47 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.143.33.69 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=48640 DF PROTO=TCP SPT=1068 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (0204057A01010402)
Jul 5 12:23:47 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.143.33.69 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=48963 DF PROTO=TCP SPT=1068 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (0204057A01010402)
Jul 5 12:23:48 linux kernel: SuSE-FW-ACCEPT-REVERSE_MASQ IN=ppp0 OUT=eth1 SRC=80.143.33.69 DST=192.168.1.11 LEN=48 TOS=0x00 PREC=0x00 TTL=122 ID=49176 DF PROTO=TCP SPT=1068 DPT=4662 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (0204057A01010402)