Judy Leach | 8 Mar 17:12 2011

Re: Mobile Broadband Connection

Hi Kevin,

I installed the beta 2.2.0 and was still unable to connect; received the negotiation time out message. Attached is the iked.log file. I have edited out the IP addresses for my broadband connection and the VPN server I am trying to connect to. I was able to have a look at the logs on the server and it seems that the connection attempt does not reach the server at all.
<!-- <at> page { margin: 2cm } P { margin-bottom: 0.21cm } A:link { so-language: zxx } -->

Judy

11/03/08 10:50:14 ## : IKE Daemon, ver 2.2.0
11/03/08 10:50:14 ## : Copyright 2009 Shrew Soft Inc.
11/03/08 10:50:14 ## : This product linked OpenSSL 0.9.8h 28 May 2008
11/03/08 10:50:14 ii : opened 'C:\Program Files\ShrewSoft\VPN Client\debug\iked.log'
11/03/08 10:50:14 ii : opened 'C:\Program Files\ShrewSoft\VPN Client/debug/dump-ike-decrypt.cap'
11/03/08 10:50:14 ii : rebuilding vnet device list ...
11/03/08 10:50:14 ii : device ROOT\VNET\0000 disabled
11/03/08 10:50:14 ii : network process thread begin ...
11/03/08 10:50:14 ii : pfkey process thread begin ...
11/03/08 10:50:14 ii : ipc server process thread begin ...
11/03/08 10:50:30 ii : ipc client process thread begin ...
11/03/08 10:50:30 <A : peer config add message
11/03/08 10:50:30 <A : proposal config message
11/03/08 10:50:30 <A : proposal config message
11/03/08 10:50:30 <A : client config message
11/03/08 10:50:30 <A : preshared key message
11/03/08 10:50:30 <A : remote resource message
11/03/08 10:50:30 <A : remote resource message
11/03/08 10:50:30 <A : peer tunnel enable message
11/03/08 10:50:30 DB : peer added ( obj count = 1 )
11/03/08 10:50:30 ii : local address ###.###.###.### selected for peer
11/03/08 10:50:30 DB : tunnel added ( obj count = 1 )
11/03/08 10:50:30 DB : new phase1 ( ISAKMP initiator )
11/03/08 10:50:30 DB : exchange type is identity protect
11/03/08 10:50:30 DB : ###.###.###.###:### <-> ###.###.###.###:###11/03/08 10:50:30 DB : d09c931aa8189b92:0000000000000000
11/03/08 10:50:30 DB : phase1 added ( obj count = 1 )
11/03/08 10:50:30 >> : security association payload
11/03/08 10:50:30 >> : - proposal #1 payload 
11/03/08 10:50:30 >> : -- transform #1 payload 
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local supports nat-t ( draft v00 )
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local supports nat-t ( draft v01 )
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local supports nat-t ( draft v02 )
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local supports nat-t ( draft v03 )
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local supports nat-t ( rfc )
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local supports FRAGMENTATION
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local supports DPDv1
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local is SHREW SOFT compatible
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local is NETSCREEN compatible
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local is SIDEWINDER compatible
11/03/08 10:50:30 >> : vendor id payload
11/03/08 10:50:30 ii : local is CISCO UNITY compatible
11/03/08 10:50:30 >= : cookies d09c931aa8189b92:0000000000000000
11/03/08 10:50:30 >= : message 00000000
11/03/08 10:50:30 -> : send IKE packet ###.###.###.###:### -> ###.###.###.###:### ( 360 bytes )
11/03/08 10:50:30 DB : phase1 resend event scheduled ( ref count = 2 )
11/03/08 10:50:35 -> : resend 1 phase1 packet(s) [0/2] ###.###.###.###:### -> ###.###.###.###:###
11/03/08 10:50:40 -> : resend 1 phase1 packet(s) [1/2] ###.###.###.###:### -> ###.###.###.###:###
11/03/08 10:50:45 -> : resend 1 phase1 packet(s) [2/2] ###.###.###.###:### -> ###.###.###.###:###
11/03/08 10:50:50 ii : resend limit exceeded for phase1 exchange
11/03/08 10:50:50 ii : phase1 removal before expire time
11/03/08 10:50:50 DB : phase1 deleted ( obj count = 0 )
11/03/08 10:50:50 DB : policy not found
11/03/08 10:50:50 DB : policy not found
11/03/08 10:50:50 DB : policy not found
11/03/08 10:50:50 DB : policy not found
11/03/08 10:50:50 DB : policy not found
11/03/08 10:50:50 DB : policy not found
11/03/08 10:50:50 DB : policy not found
11/03/08 10:50:50 DB : policy not found
11/03/08 10:50:50 DB : removing tunnel config references
11/03/08 10:50:50 DB : removing tunnel phase2 references
11/03/08 10:50:50 DB : removing tunnel phase1 references
11/03/08 10:50:50 DB : tunnel deleted ( obj count = 0 )
11/03/08 10:50:50 DB : removing all peer tunnel refrences
11/03/08 10:50:50 DB : peer deleted ( obj count = 0 )
11/03/08 10:50:50 ii : ipc client process thread exit ...
11/03/08 10:50:54 ii : halt signal received, shutting down
11/03/08 10:50:54 ii : pfkey process thread exit ...
11/03/08 10:50:54 ii : network process thread exit ...
11/03/08 10:50:54 ii : ipc server process thread exit ...
_______________________________________________
vpn-help mailing list
vpn-help@...
http://lists.shrew.net/mailman/listinfo/vpn-help
Karsten | 8 Mar 09:12 2011
Picon

Re: Mac OSX VPN Client Testing ...

Matthew Grooms <mgrooms <at> ...> writes:

> 
> On 11/28/2010 1:03 PM, Lars Vik wrote:
> > Hi Matthew,
> >
> > Thanks for making Shrew available for OSX as well. Just installed Shrew
> > for OSX and it works very well. I just used a profile directly from
> > Windows. As other has observed, DNS doesn`t seem to work yet. Keep up
> > the good work, and thanks! 
> >
> 
> Hi Lars,
> 
> Thanks for testing. When I have time, I'll try to discover the nuances 
> of how OSX manages DNS settings and adapt the Shrew Soft VPN client to 
> provide adequate support.
> 
> -Matthew
> 

Hi there...

really good work.

No problems to connect, but the DNS- entry doesen't
 work for me either.

Karsten

Gmane