by I have three sites:
two has PPPoE connection, with DSL modem and variable IP
one has RFC1483 LLC routed, with DSL router and fixed IP
each one has IPCOP v1.4.5, and every machine is directly pingable; (the
router is configurated with DMZ to IPCOP machine)
The problem is that VPN goes on two PPPoE sites, and doesn't on the
other site.
Seeking the "ipsec barf" I can see this:
Apr 10 23:57:56 ipcop pluto[3071]: packet from xxx.xxx.xxx.xxx:500:
initial Main Mode message received on 192.168.1.1:500 but no connection
has been authorized with policy=PSK
(xxx.xxx.xxx.xxx is public IP of the "remote" machine)
(192.168.1.1 is the red IP of IPCOP)
The lan is so configurated:
router: wan: fixed ip
router: lan: 192.168.1.254
|
ipcop: red: 192.168.1.1
ipcop: green: 192.168.130.254
|
lan 192.168.130.0/255.255.255.0
The configuration are similar on the three IPCOP machine, so the only
different is on RFC1483 sites. But what?
Code:
left=xxx.xxx.xxx.xxx
leftnexthop=%defaultroute
leftsubnet=192.168.130.0/255.255.255.0
right=yyy.yyy.yyy.yyy
rightsubnet=192.168.101.0/255.255.255.0
rightnexthop=%defaultroute
dpddelay=30
dpdtimeout=120
dpdaction=hold
authby=secret
auto=start
[/code]