name based ipsec -problem hostname resolves to mutiple IPs

Discussion in 'General Computer Support' started by indira24, Mar 2, 2009.

  1. indira24

    indira24

    Joined:
    Mar 2, 2009
    Messages:
    1
    Hi,

    I am using openswan 2.4.5 with 2.6.23.5 kernel. I am facing problem when i am using host name for right in ipsec.conf file. It has two IP's 44.0.0.2 and 45.0.0.2.
    ipsec barf shows

    Mar 2 03:29:18 fatpipe pluto[5473]: packet from 46.0.0.2:500: received Vendor ID payload [Openswan (this version) 2.4.5 X.509-1.5.4 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
    Mar 2 03:29:18 fatpipe pluto[5473]: packet from 46.0.0.2:500: received Vendor ID payload [Dead Peer Detection]
    Mar 2 03:29:18 fatpipe pluto[5473]: "aaa" #4: responding to Main Mode
    Mar 2 03:29:18 fatpipe pluto[5473]: "aaa" #4: Can't authenticate: no preshared key found for `44.0.0.2' and `46.0.0.2'. Attribute OAKLEY_AUTHENTICATION_METHOD
    Mar 2 03:29:18 fatpipe pluto[5473]: "aaa" #4: no acceptable Oakley Transform
    Mar 2 03:29:18 fatpipe pluto[5473]: "aaa" #4: sending notification NO_PROPOSAL_CHOSEN to 46.0.0.2:500

    I have host name in both ipsec.conf and ipsec.secert file. It was working for RSA signature method. And PSK also working when host name contains only one IP. Is PSK support multiple IP for single host name(it is not dynamic). Please help me.

    Thanks,
    Indira.
    indira24, Mar 2, 2009
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Kevin Coles
    Replies:
    5
    Views:
    757
    Kevin Coles
    Jan 10, 2006
  2. deryck  lant

    Nikon mount Zeiss lens resolves 320 lp/mm

    deryck lant, Mar 2, 2006, in forum: Digital Photography
    Replies:
    24
    Views:
    1,316
    Father Kodak
    Apr 29, 2006
  3. Can2002
    Replies:
    3
    Views:
    4,234
    Bod43@hotmail.co.uk
    Jan 18, 2007
  4. JH
    Replies:
    2
    Views:
    1,895
    Charlie Russel - MVP
    Apr 30, 2008
  5. Martijn Lievaart

    HSRP: virtual IPs without real IPs?

    Martijn Lievaart, Feb 9, 2012, in forum: Cisco
    Replies:
    4
    Views:
    1,126
    Martijn Lievaart
    Feb 15, 2012
Loading...

Share This Page