LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 09-07-2008, 06:39 AM   #1
OdinnBurkni
Member
 
Registered: Feb 2007
Location: Iceland
Distribution: Fedora 14, CentOS, FreeNAS
Posts: 127

Rep: Reputation: 20
Problem with IPsec, pluto not running


Hi guys and maybe girls?
I'm having trouble getting VPN working. I set up OpenSwan and it seemed ok. Then I made a .conf file and placed it in /etc/ipsec.d and also a .secrets file also placed in /etc/ipsec.d.
What I've accomplished so far is that when I start ipsec and check it with service ipsec status it says
IPsec running - pluto pid: 32064
pluto pid 32064
No tunnels up
And if I try again service ipsec status then it says:
cat: /var/run/pluto/pluto.pid: No such file or directory
IPsec running - pluto pid:
but...
cat: /var/run/pluto/pluto.pid: No such file or directory
no Pluto running - pluto pid:
KLIPS module is not loaded!
and more stuff.
Why does it loose pluto???
Here is my /etc/ipsec.conf file:
Code:
# /etc/ipsec.conf - Openswan IPsec configuration file
#
# Manual:     ipsec.conf.5
#
# Please place your own config files in /etc/ipsec.d/ ending in .conf

version 2.0     # conforms to second version of ipsec.conf specification

# basic configuration
config setup
        # Debug-logging controls:  "none" for (almost) none, "all" for lots.
        # klipsdebug=none
        # plutodebug="control parsing"
        #protostack=netkey
        interfaces=ipsec0=eth0
        nat_traversal=yes

include /etc/ipsec.d/*.conf
I've tried it both with and without the interfaces line, no change.
Here's my /etc/ipsec.d/myconn.conf
Code:
conn GholtTunnel
        authby=secret
        pfs=no
        auto=start
        keyingtries=3
        disablearrivalcheck=no
        #IKE params
        keyexchange=ike
        ikelifetime=240m
        #IPsec Params
        type=tunnel
        auth=esp
        #esp=3des-sha1
        #ike=3des-sha1-modp1024
        compress=no
        keylife=60m
        # Left security gateway, subnet behind it, next hop toward right.
        left=my.public.ip
        leftsubnet=192.168.15.0/24
        leftnexthop=my.left.next.hop
        # Right security gateway, subnet behind it, next hop toward left.
        right=right.public.ip
        rightsubnet=192.168.25.0/24
        rightnexthop=right.next.hop
        rightsourceip=192.168.25.3
Then the /etc/ipsec.d/myconn.secrets file
Code:
# PSK
my.left.public.ip right.public.ip: PSK "MySharedKey"
When I do service ipsec stop it stops but if when I do service ipsec status shortly after service ipsec stop it seems to be running anyway, but without pluto.
Please help me out here, I know you can. There are lot of really wise people reading here so please share your knowledge.
I'm sure that it is not so very big deal, just some stupid steps or something I've done.

Thanks in advance.
Odinn Burkni
 
Old 09-12-2008, 04:58 AM   #2
OdinnBurkni
Member
 
Registered: Feb 2007
Location: Iceland
Distribution: Fedora 14, CentOS, FreeNAS
Posts: 127

Original Poster
Rep: Reputation: 20
Still nothing

Hi there.
Many views, that is great. I'm sure somebody out there can give me a hint. The weird thing is that it worked at one point. I had the tunnel up but now it doesn't connect and Pluto's not happy.....
Please stop laughing and tell me what I'm doing wrong....

Regards,
Odinn Burkni
 
Old 09-25-2008, 06:05 PM   #3
OdinnBurkni
Member
 
Registered: Feb 2007
Location: Iceland
Distribution: Fedora 14, CentOS, FreeNAS
Posts: 127

Original Poster
Rep: Reputation: 20
IPsec and Cisco

Hi there.
I see that many people have read the post so I'm pretty glad about that.
There must be someone out there who knows more about this than I do. Any suggestion is appreciated.

Regards,
Odinn Burkni
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Rsync running on IPSEC VPN timeout or getting very slow speed Moaahk Linux - Hardware 0 06-11-2008 10:46 PM
Running Openswan for IPSEC VPN agentc0re Slackware 1 05-13-2008 12:13 PM
Running IPSEC vpn server ? winxandlinx Linux - Security 1 10-11-2006 06:41 AM
Problems w. Racoon/Pluto Interoperability Furbo Linux - Networking 0 01-17-2005 07:23 AM
FreeSwan - Pluto Tarantismic Yak Linux - General 1 07-10-2001 07:41 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 08:58 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration