[BLUG] Can't Connect to IU VPN in Ubuntu
Ben Shewmaker
blug_at_mailman.cs.indiana.edu
Fri, 22 Jun 2007 12:44:35 -0700 (PDT)
--0-928658671-1182541475=:51647
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
I am trying to connect to the IU VPN in Ubuntu using the USSG script found here: http://www.ussg.iu.edu/support/documentation#iuvpn I believe I've installed all the requirements listed on that page and I also think I'm following the directions correctly, but something isn't quite right as I can't connect. I am connecting with my pc and its wired connection and I can connect to the VPN from Windows with no problem. Here's what happens when I run the script:
ben_at_ben-desktop:~/sandbox/iu-vpn-ipsec-1.4$ sudo ./iu-vpn-ipsec start
Starting iu-vpn-ipsec: ipsec_setup: Starting Openswan IPsec 2.4.6...
ipsec_setup: insmod /lib/modules/2.6.20-16-generic/kernel/net/key/af_key.ko
ipsec_setup: insmod /lib/modules/2.6.20-16-generic/kernel/net/ipv4/xfrm4_tunnel.ko
ipsec_setup: insmod /lib/modules/2.6.20-16-generic/kernel/net/xfrm/xfrm_user.ko
104 "IUB" #1: STATE_MAIN_I1: initiate
003 "IUB" #1: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set to=106
003 "IUB" #1: ignoring unknown Vendor ID payload [4048b7d56ebce88525e7de7f00d6c2d3c0000000]
106 "IUB" #1: STATE_MAIN_I2: sent MI2, expecting MR2
003 "IUB" #1: received Vendor ID payload [Cisco-Unity]
003 "IUB" #1: received Vendor ID payload [XAUTH]
003 "IUB" #1: ignoring unknown Vendor ID payload [e2f72a5fb67877299ba6d38f82996be9]
003 "IUB" #1: ignoring Vendor ID payload [Cisco VPN 3000 Series]
003 "IUB" #1: NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-02/03: i am NATed
108 "IUB" #1: STATE_MAIN_I3: sent MI3, expecting MR3
003 "IUB" #1: received Vendor ID payload [Dead Peer Detection]
004 "IUB" #1: STATE_MAIN_I4: ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1024}
117 "IUB" #2: STATE_QUICK_I1: initiate
003 "IUB" #2: our client ID returned doesn't match my proposal
218 "IUB" #2: STATE_QUICK_I1: INVALID_ID_INFORMATION
SIOCDELRT: No such process
mkdir: cannot create directory `/var/run/xl2tpd': File exists
touch: cannot touch `/var/lock/subsys/l2tpd': No such file or directory OK ]
Enter password for akojika:
Connecting to VPN at IUB...
WWaiting up to 01 seconds for ppp0...
Error: ppp0 not found. aborting...
Possible mismatched username/passphrase. Try again? y/[n]
n
Cleaning up connections
iptables: Bad rule (does a matching rule exist in that chain?)
iptables: Bad rule (does a matching rule exist in that chain?)
Could not remove rule to open port 500/UDP with iptables.
SIOCDELRT: No such device
Stopping iu-vpn-ipsec: Stopping /usr/sbin/xl2tpd: [ OK ]
ipsec_setup: Stopping Openswan IPsec...
Cleaning up...done.
Have I missed a crucial step somewhere? I'd really appreciate any help you can throw my way.
Ben Shewmaker
---------------------------------
Get the Yahoo! toolbar and be alerted to new email wherever you're surfing.
--0-928658671-1182541475=:51647
Content-Type: text/html; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
I am trying to connect to the IU VPN in Ubuntu using the USSG script found here: http://www.ussg.iu.edu/support/documentation#iuvpn I believe I've installed all the requirements listed on that page and I also think I'm following the directions correctly, but something isn't quite right as I can't connect. I am connecting with my pc and its wired connection and I can connect to the VPN from Windows with no problem. Here's what happens when I run the script:<br><br>ben_at_ben-desktop:~/sandbox/iu-vpn-ipsec-1.4$ sudo ./iu-vpn-ipsec start<br>Starting iu-vpn-ipsec: ipsec_setup: Starting Openswan IPsec 2.4.6...<br>ipsec_setup: insmod /lib/modules/2.6.20-16-generic/kernel/net/key/af_key.ko <br>ipsec_setup: insmod /lib/modules/2.6.20-16-generic/kernel/net/ipv4/xfrm4_tunnel.ko <br>ipsec_setup: insmod /lib/modules/2.6.20-16-generic/kernel/net/xfrm/xfrm_user.ko <br>104 "IUB" #1: STATE_MAIN_I1: initiate<br>003 "IUB" #1: received Vendor ID payload
[draft-ietf-ipsec-nat-t-ike-02_n] method set to=106 <br>003 "IUB" #1: ignoring unknown Vendor ID payload [4048b7d56ebce88525e7de7f00d6c2d3c0000000]<br>106 "IUB" #1: STATE_MAIN_I2: sent MI2, expecting MR2<br>003 "IUB" #1: received Vendor ID payload [Cisco-Unity]<br>003 "IUB" #1: received Vendor ID payload [XAUTH]<br>003 "IUB" #1: ignoring unknown Vendor ID payload [e2f72a5fb67877299ba6d38f82996be9]<br>003 "IUB" #1: ignoring Vendor ID payload [Cisco VPN 3000 Series]<br>003 "IUB" #1: NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-02/03: i am NATed<br>108 "IUB" #1: STATE_MAIN_I3: sent MI3, expecting MR3<br>003 "IUB" #1: received Vendor ID payload [Dead Peer Detection]<br>004 "IUB" #1: STATE_MAIN_I4: ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1024}<br>117 "IUB" #2: STATE_QUICK_I1: initiate<br>003 "IUB" #2: our client ID returned doesn't match my proposal<br>218 "IUB" #2: STATE_QUICK_I1:
INVALID_ID_INFORMATION<br>SIOCDELRT: No such process<br>mkdir: cannot create directory `/var/run/xl2tpd': File exists<br>touch: cannot touch `/var/lock/subsys/l2tpd': No such file or directory OK ]<br><br>Enter password for akojika: <br>Connecting to VPN at IUB...<br><br>WWaiting up to 01 seconds for ppp0...<br>Error: ppp0 not found. aborting... <br>Possible mismatched username/passphrase. Try again? y/[n]<br>n<br>Cleaning up connections<br>iptables: Bad rule (does a matching rule exist in that chain?)<br>iptables: Bad rule (does a matching rule exist in that chain?)<br>Could not remove rule to open port 500/UDP with iptables.<br>SIOCDELRT: No such device<br>Stopping iu-vpn-ipsec: Stopping
/usr/sbin/xl2tpd: [ OK ]<br>ipsec_setup: Stopping Openswan IPsec...<br>Cleaning up...done.<br><br><br>Have I missed a crucial step somewhere? I'd really appreciate any help you can throw my way.<br><br><br>Ben Shewmaker<br><p> 
<hr size=1>Get the Yahoo! toolbar and <a href="http://us.rd.yahoo.com/evt=48225/*http://new.toolbar.yahoo.com/toolbar/features/mail/index.php">be alerted to new email </a>wherever you're surfing.
--0-928658671-1182541475=:51647--