Je tente actuellement de faire fonctionner ipcop 1.4.21 sous Vmware en VPN, mais impossible de monter le tunnel voici mon journal de log:
- Code: Tout sélectionner
16:35:55 ipsec_setup ...Openswan IPsec stopped
16:35:55 ipsec_setup ipsec: Device or resource busy
16:35:55 ipsec_setup /usr/lib/ipsec/tncfg: Socket ioctl failed on detach -- No such device. Is the v irtual device valid? The ipsec module may not be linked into the kernel or load ed as a module.
16:35:54 pluto[726] shutting down interface ipsec0/eth1 91.121.39.xx
16:35:54 pluto[726] shutting down interface ipsec0/eth1 91.121.39.xx
16:35:54 pluto[726] forgetting secrets
16:35:54 pluto[726] shutting down
16:35:54 ipsec_setup Stopping Openswan IPsec...
16:35:29 pluto[726] packet from 77.74.211.xx:500: initial Main Mode message received on 91.121.39.xx :500 but no connection has been authorized with policy=PSK
16:35:29 pluto[726] packet from 77.74.211.xx:500: received Vendor ID payload [Dead Peer Detection]
16:35:29 pluto[726] packet from 77.74.211.xx:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t -ike-00]
16:35:29 pluto[726] packet from 77.74.211.xx:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t -ike-02]
16:35:29 pluto[726] packet from 77.74.211.xx:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t -ike-03]
16:35:29 pluto[726] packet from 77.74.211.xx:500: received Vendor ID payload [RFC 3947]
16:35:24 ipsec__plutorun ...could not start conn "testphilippe"
16:35:24 ipsec__plutorun 021 no connection named "testphilippe"
16:35:24 ipsec__plutorun ...could not route conn "testphilippe"
16:35:24 ipsec__plutorun 021 no connection named "testphilippe"
16:35:24 pluto[726] loading secrets from "/etc/ipsec.secrets"
16:35:24 pluto[726] adding interface ipsec0/eth1 91.121.39.xx:4500
16:35:24 pluto[726] adding interface ipsec0/eth1 91.121.39.xx
16:35:24 pluto[726] listening for IKE messages
16:35:24 ipsec__plutorun ipsec_auto: fatal error in "testphilippe": %defaultroute requested but not known
16:35:24 pluto[726] OpenPGP certificate file '/etc/pgpcert.pgp' not found
16:35:24 pluto[726] Warning: empty directory
16:35:24 pluto[726] Changing to directory '/etc/ipsec.d/crls'
16:35:24 pluto[726] Warning: empty directory
16:35:24 pluto[726] Changing to directory '/etc/ipsec.d/cacerts'
16:35:24 pluto[726] ike_alg_register_enc(): Activating OAKLEY_SSH_PRIVATE_65289: Ok (ret=0)
16:35:24 pluto[726] ike_alg_register_enc(): Activating OAKLEY_TWOFISH_CBC: Ok (ret=0)
16:35:24 pluto[726] ike_alg_register_hash(): Activating OAKLEY_SHA2_512: Ok (ret=0)
16:35:24 pluto[726] ike_alg_register_hash(): Activating OAKLEY_SHA2_256: Ok (ret=0)
16:35:24 pluto[726] ike_alg_register_enc(): Activating OAKLEY_SERPENT_CBC: Ok (ret=0)
16:35:24 pluto[726] ike_alg_register_enc(): Activating OAKLEY_CAST_CBC: Ok (ret=0)
16:35:24 pluto[726] ike_alg_register_enc(): Activating OAKLEY_BLOWFISH_CBC: Ok (ret=0)
16:35:24 pluto[726] ike_alg_register_enc(): Activating OAKLEY_AES_CBC: Ok (ret=0)
16:35:24 pluto[726] including NAT-Traversal patch (Version 0.6)
16:35:24 pluto[726] including X.509 patch with traffic selectors (Version 0.9.42)
16:35:24 pluto[726] Starting Pluto (Openswan Version 1.0.10)
16:35:24 ipsec_setup ...Openswan IPsec started
16:35:24 ipsec__plutorun Starting Pluto subsystem...
16:35:24 ipsec_setup KLIPS ipsec0 on eth1 91.121.39.xx/255.255.255.255 broadcast 91.121.39.255
16:35:24 ipsec_setup KLIPS debug `none'
16:35:24 ipsec_setup Starting Openswan IPsec 1.0.10...
Je précise que j'ai déjà des ipcops fonctionnels, il s'agit d'un test d'une installation d'ipcop sur une debian avec Vmware chez ovh
Voici le lien du post: http://forums.ixus.fr/viewtopic.php?t=42581
Si jamais vous avez une idée je reste preneur...
Merci
