I'm using an Android smartphone as a client.
Samsung Galaxy S3 - Sprint
CyanogenMod 10.0
I've downloaded the IPsec cert from the user portal and installed it on the device.
Attempting to connect generates the following logs on my astaro:
I've found some links that references these errors but I can't figure out what I'm going wrong.
Any help would be appreciated.
Thanks,
Doug
Samsung Galaxy S3 - Sprint
CyanogenMod 10.0
I've downloaded the IPsec cert from the user portal and installed it on the device.
Attempting to connect generates the following logs on my astaro:
Code:
2012:11:14-21:33:56 wahine pluto[5715]: |
2012:11:14-21:33:56 wahine pluto[5715]: | *received 1868 bytes from 66.87.113.229:34975 on eth1
2012:11:14-21:33:56 wahine pluto[5715]: | ICOOKIE: 4a b9 55 4e e2 4c c5 05
2012:11:14-21:33:56 wahine pluto[5715]: | RCOOKIE: f5 c1 4c 1a ff f1 38 f0
2012:11:14-21:33:56 wahine pluto[5715]: | peer: 42 57 71 e5
2012:11:14-21:33:56 wahine pluto[5715]: | state hash entry 9
2012:11:14-21:33:56 wahine pluto[5715]: | state object #2 found, in STATE_MAIN_R2
2012:11:14-21:33:56 wahine pluto[5715]: "D_IPSec for VMnet"[1] 66.87.113.229:34669 #2: Peer ID is ID_DER_ASN1_DN: 'C=us, ST=WA, L=Seattle, O=Ravenna'
2012:11:14-21:33:56 wahine pluto[5715]: | subject: 'C=us, ST=WA, L=Seattle, O=Ravenna'
2012:11:14-21:33:56 wahine pluto[5715]: | issuer: 'C=us, L=Seattle, O=Ravenna, CN=Ravenna VPN CA, E=doug@quijubo.com'
2012:11:14-21:33:56 wahine pluto[5715]: | authkey: 71:a5:09:2c:d6:fc:7a:25:86:b3:3a:ad:68:5c:d1:24:ea:cf:3a:ed
2012:11:14-21:33:56 wahine pluto[5715]: | certificate is valid
2012:11:14-21:33:56 wahine pluto[5715]: | issuer cacert found
2012:11:14-21:33:56 wahine pluto[5715]: | certificate signature is valid
2012:11:14-21:33:56 wahine pluto[5715]: "D_IPSec for VMnet"[1] 66.87.113.229:34669 #2: crl not found
2012:11:14-21:33:56 wahine pluto[5715]: "D_IPSec for VMnet"[1] 66.87.113.229:34669 #2: certificate status unknown
2012:11:14-21:33:56 wahine pluto[5715]: | subject: 'C=us, L=Seattle, O=Ravenna, CN=Ravenna VPN CA, E=doug@quijubo.com'
2012:11:14-21:33:56 wahine pluto[5715]: | issuer: 'C=us, L=Seattle, O=Ravenna, CN=Ravenna VPN CA, E=doug@quijubo.com'
2012:11:14-21:33:56 wahine pluto[5715]: | certificate is valid
2012:11:14-21:33:56 wahine pluto[5715]: | issuer cacert found
2012:11:14-21:33:56 wahine pluto[5715]: | certificate signature is valid
2012:11:14-21:33:56 wahine pluto[5715]: | reached self-signed root ca with a path length of 0
2012:11:14-21:33:56 wahine pluto[5715]: | RSA signature check passed with keyid 61:d9:75:15:8d:24:2b:2e:1d:ce:00:f0:65:88:8c:93:c4:32:08:d3
2012:11:14-21:33:56 wahine pluto[5715]: | peer CA: "C=us, L=Seattle, O=Ravenna, CN=Ravenna VPN CA, E=doug@quijubo.com"
2012:11:14-21:33:56 wahine pluto[5715]: | requested CA: %any
2012:11:14-21:33:56 wahine pluto[5715]: "D_IPSec for VMnet"[1] 66.87.113.229:34669 #2: no suitable connection for peer 'C=us, ST=WA, L=Seattle, O=Ravenna'
2012:11:14-21:33:56 wahine pluto[5715]: "D_IPSec for VMnet"[1] 66.87.113.229:34669 #2: sending encrypted notification INVALID_ID_INFORMATION to 66.87.113.229:34669
2012:11:14-21:33:56 wahine pluto[5715]: | state transition function for STATE_MAIN_R2 failed: INVALID_ID_INFORMATION Any help would be appreciated.
Thanks,
Doug