Re: [gb-users] GTA Mobile VPN Client -> GB-OS 3.7.0 VPN

To:	Jordi Vila <jordi.vila_at_gtd.es>
Subject:	Re: [gb-users] GTA Mobile VPN Client -> GB-OS 3.7.0 VPN
From:	Ben Tyson-Norrman <ben_at_twowaytv.co_dot_uk>
Date:	Fri, 07 Oct 2005 13:04:13 +0100
Cc:	gb-users_at_gta_dot_com
In-reply-to:	<200510071121.j97BL5m0001983@smtp2.twowaytv.co.uk>
References:	<200510071121.j97BL5m0001983@smtp2.twowaytv.co.uk>
User-agent:	Mozilla Thunderbird 1.0.6 (X11/20050912)

Had this problem all day yesterday. Have you got licences on the GnatBox
and are they accepted as valid. Basically I could connect one, then it
wouldn't reconnect or connect a new user. The licences where getting
held for a long period of time - 10 minutes plus - and the firewall
wouldn't let go of them. Got the info by reading the syslog output -
wasn't any other warning anywhere.

Having installed licences properly I can now get it to work.

The only other option you have is that the Phase II data types are the
not same in the VPN object

Jordi Vila wrote:
> Hello there,
> 
> I'm trying to establish a VPN connection between a GTA Mobile VPN Client,
> version 2.51.015 and a GB-OS 3.7.0. It does not work.  The cronology of
> events does not follow any of the examples that appear on the GB-OS VPN
> Gateway & GTA Mobile VPN Client Option Guide manual. Phase I goes OK, but
> phase II does not start the VPN tunnel. On the Firewall side, no messages
> appear on the log. The messages that appear on the client are the following
> ones:
> 
> 125907 Default (SA GTDBcn-P1) SEND phase 1 Aggressive Mode  [SA] [KEY_EXCH]
> [NONCE] [ID] [VID] [VID] [VID] [VID]
> 125907 Default (SA GTDBcn-P1) RECV phase 1 Aggressive Mode  [HASH] [SA]
> [KEY_EXCH] [NONCE] [ID] [NAT_D] [NAT_D] [VID] [VID]
> 125907 Default (SA GTDBcn-P1) SEND phase 1 Aggressive Mode  [HASH] [NAT_D]
> [NAT_D]
> 125907 Default phase 1 done: initiator id xxx_yyy_at_www.zz, responder id
> 10.10.108.50
> 125907 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode  [HASH] [SA]
> [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA]
> 125907 Default RECV Informational  [HASH] [NOTIFY]
> 125914 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode  [HASH] [SA]
> [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA]
> 125923 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode  [HASH] [SA]
> [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA]
> 125934 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode  [HASH] [SA]
> [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA]
> 125937 Default SEND Informational  [HASH] [NOTIFY]
> 125937 Default RECV Informational  [HASH] [NOTIFY]
> 125937 Default RECV Informational  [HASH] [NOTIFY]
> 125937 Default SEND Informational  [HASH] [NOTIFY]
> 125947 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode  [HASH] [SA]
> [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA]
> 130002 Default (SA GTDBcn-GTDBcnp2-P2) SEND phase 2 Quick Mode  [HASH] [SA]
> [KEY_EXCH] [NONCE] [ID] [ID] [NAT_OA]
> 130002 Default transport_send_messages: giving up on message 00D4E218
> 130007 Default RECV Informational  [HASH] [NOTIFY]
> 130007 Default SEND Informational  [HASH] [NOTIFY]
> ...
> And so on with SEND Informational...
> 
> Googleing for any advice on Internet, I've found this message
> 
> http://www.monkey.org/openbsd/archive/misc/0409/msg00772.html
> 
> It talks about the Quick mode exchange, and the NAT_OA payload. There can be
> any relation with my issue and this information ?
> 
> Any other advice about how to make the connection work ?
> 
> 
> Thanks in advance, yours faithfully
> 
> 
> Jordi Vila Mas
> Responsable Ticnico
> 
> GTD SISTEMAS DE INFORMACISN
> Pg. Garcia F`ria, 17        E-08005 Barcelona
> Tel.: +34 934 939 300    Fax: +34 934 939 302
> www.gtd.es    -    jordi.vila_at_gtd.es
> 
> Este mensaje es confidencial. Cualquier distribucisn, uso o copia del
> mensaje o de la informacisn en el contenido por otras personas distintas de
> los destinatarios esta prohibida. Si usted recibe este mensaje por error,
> por favor comunmquemelo inmediatamente mediante reenvmo del mensaje o por
> otro medio.
> This e-mail may be confidential. Any distribution, use or copying of this
> e-mail or the information it contains by other than an intended recipient is
> unauthorized. If you received this e-mail in error, please advise me (by
> return e-mail or otherwise) immediately.
> Ce courriel est confidentiel. Toute diffusion, utilisation ou copie de ce
> message ou des renseignements qu'il contient par une personne autre que les
> destinataires disignis est interdite. Si vous recevez ce courriel par
> erreur, veuillez m'en aviser immidiatement, par retour de courriel ou par un
> autre moyen.
> 
> ------------------------------------------------------
> To unsubscribe:           gb-users-unsubscribe_at_gta_dot_com
> For additional commands:         gb-users-help_at_gta_dot_com
> Archive:  http://archives.gnatbox.com/gb-users/
> 

-- 
Ben Tyson-Norrman
DTV / IT Manager
Landline: 0207 665 4460
Mobile: 07976 230429
GNUPG KEY: 82D04531

------------------------------------------------------
To unsubscribe:           gb-users-unsubscribe_at_gta_dot_com
For additional commands:         gb-users-help_at_gta_dot_com
Archive:  http://archives.gnatbox.com/gb-users/

<Prev in Thread]	Current Thread	[Next in Thread>
[gb-users] GTA Mobile VPN Client -> GB-OS 3.7.0 VPN, Jordi Vila Re: [gb-users] GTA Mobile VPN Client -> GB-OS 3.7.0 VPN, Ben Tyson-Norrman <= RE: [gb-users] GTA Mobile VPN Client -> GB-OS 3.7.0 VPN, Jordi Vila

Previous by Date:	[gb-users] GTA Mobile VPN Client -> GB-OS 3.7.0 VPN, Jordi Vila
Next by Date:	[gb-users] GTA 3.5.x odd cfg issues, Cox, Danny H.
Previous by Thread:	[gb-users] GTA Mobile VPN Client -> GB-OS 3.7.0 VPN, Jordi Vila
Next by Thread:	RE: [gb-users] GTA Mobile VPN Client -> GB-OS 3.7.0 VPN, Jordi Vila
Indexes:	[Date] [Thread] [All Lists] [Home]