VPN avec Raccon

VPN avec Raccon - réseaux et sécurité - Linux et OS Alternatifs

Marsh Posté le 06-03-2012 à 11:47:17    

Bonjour
J'essaye de monter un vpn entre une livebox pro 2 et un serveur linux.
Su linux j'ai insall RACOON  et il semble qu'il y ait un pb de config , car aucune trame ne part en ligne sur le port 500.
 
Voici ma config :
 
 
 
log notify;
path pre_shared_key "/etc/racoon/psk.txt";
 
remote 2.4.217.193 {
my_identifier address 46.105.10.113;
exchange_mode aggressive;
lifetime time 120 sec;
nat_traversal on;
passive off;
proposal {
encryption_algorithm aes;
hash_algorithm md5;
authentication_method pre_shared_key;
dh_group 5;
}
}
sainfo address 192.168.203.10 any address 192.168.22.0/24 any {
        pfs_group modp768;
        encryption_algorithm 3des;
        authentication_algorithm hmac_md5;
        compression_algorithm deflate;
}
 
 
 
La commande que j'envoe :
racoon -Fdf /etc/racoon/racoon.confbis
 
 
Et qui s'affiche :
 
 
Foreground mode.
2012-03-06 11:44:57: INFO: @(#)ipsec-tools 0.8.0 (http://ipsec-tools.sourceforg$
2012-03-06 11:44:57: INFO: @(#)This product linked OpenSSL 1.0.0e 6 Sep 2011 (h$
2012-03-06 11:44:57: INFO: Reading configuration from "/etc/racoon/racoon.confb$
2012-03-06 11:44:57: DEBUG: call pfkey_send_register for AH
2012-03-06 11:44:57: DEBUG: call pfkey_send_register for ESP
2012-03-06 11:44:57: DEBUG: call pfkey_send_register for IPCOMP
2012-03-06 11:44:57: DEBUG: reading config file /etc/racoon/racoon.confbis
2012-03-06 11:44:57: INFO: 46.105.10.133[500] used for NAT-T
2012-03-06 11:44:57: INFO: 46.105.10.133[500] used as isakmp port (fd=7)
2012-03-06 11:44:57: INFO: 46.105.10.133[4500] used for NAT-T
2012-03-06 11:44:57: INFO: 46.105.10.133[4500] used as isakmp port (fd=8)
2012-03-06 11:44:57: INFO: 127.0.0.1[500] used for NAT-T
2012-03-06 11:44:57: INFO: 127.0.0.1[500] used as isakmp port (fd=9)
2012-03-06 11:44:57: INFO: 127.0.0.1[4500] used for NAT-T
2012-03-06 11:44:57: INFO: 127.0.0.1[4500] used as isakmp port (fd=10)
2012-03-06 11:44:57: INFO: 127.0.0.0[500] used for NAT-T
2012-03-06 11:44:57: INFO: 127.0.0.0[500] used as isakmp port (fd=11)
2012-03-06 11:44:57: INFO: 127.0.0.0[4500] used for NAT-T
2012-03-06 11:44:57: INFO: 127.0.0.0[4500] used as isakmp port (fd=12)
2012-03-06 11:44:57: INFO: fe80::2eff:fe69:a85%eth0[500] used as isakmp port (f$
2012-03-06 11:44:57: INFO: fe80::2eff:fe69:a85%eth0[4500] used as isakmp port ($
 
 
Quelqu' un peut il m'aider ?
 
Merci d'avance
 
Jacques
 
 
 
 
 
 
 
 
 
 
 
 
 

Reply

Marsh Posté le 06-03-2012 à 11:47:17   

Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed