Bug #3356
ipsec net2net tunnels error
| Status: | CLOSED | Start date: | ||
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | - | % Done: | 100% | |
| Category: | nethserver-ipsec | |||
| Target version: | v6.7 | |||
| Security class: | Resolution: | |||
| Affected version: | v6.7-final | NEEDINFO: | No | 
Description
Version
nethserver-ipsec-1.1.4-1.ns6.noarch
Symptom 
The tunnel is not established
During net2net tunnel connections the following log trace appears
Jan 27 12:40:45 roma pluto[24995]: "vpnnapoli_ipsec-tunnel/1x1" #4: Can't authenticate: no preshared key found for `AAA.BBB.CCC.DDD' and `@napoli'. Attribute OAKLEY_AUTHENTICATION_METHOD Jan 27 12:40:45 roma pluto[24995]: "vpnnapoli_ipsec-tunnel/1x1" #4: Can't authenticate: no preshared key found for `AAA.BBB.CCC.DDD' and `@napoli'. Attribute OAKLEY_AUTHENTICATION_METHOD Jan 27 12:40:45 roma pluto[24995]: "vpnnapoli_ipsec-tunnel/1x1" #4: no acceptable Oakley Transform Jan 27 12:40:45 roma pluto[24995]: "vpnnapoli_ipsec-tunnel/1x1" #4: sending notification NO_PROPOSAL_CHOSEN to EEE.FFF.GGG.HHH:500
Note
The leftid is the machine IP address
Associated revisions
History
#1
     Updated by Davide Principi over 5 years ago
    Updated by Davide Principi over 5 years ago
    - Status changed from TRIAGED to MODIFIED
- Assignee set to Davide Principi
- % Done changed from 20 to 60
#2
     Updated by Davide Principi over 5 years ago
    Updated by Davide Principi over 5 years ago
    - Status changed from MODIFIED to ON_QA
- Assignee deleted (Davide Principi)
- % Done changed from 60 to 70
#3
     Updated by Nicola Rauso over 5 years ago
    Updated by Nicola Rauso over 5 years ago
    - Assignee set to Nicola Rauso
#4
     Updated by Nicola Rauso over 5 years ago
    Updated by Nicola Rauso over 5 years ago
    - Status changed from ON_QA to VERIFIED
- Assignee deleted (Nicola Rauso)
- % Done changed from 70 to 90
In nethserver-testing
http://packages.nethesis.it/nethserver/6.7/testing/x86_64/Packages/nethserver-ipsec-1.1.5-1.2.g16e69b3.ns6.noarch.rpm
Tested: OK
The tunnel was correctly established and the erroneous log trace disappeared.
#5
     Updated by Giacomo Sanchietti over 5 years ago
    Updated by Giacomo Sanchietti over 5 years ago
    - Status changed from VERIFIED to CLOSED
- % Done changed from 90 to 100
Package in nethserver-updates:
	
    - nethserver-ipsec-1.1.6-1.ns6.noarch.rpm
NS 7 already includes this fix.