Welcome to the Sophos User Bulletin Board.
If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Reply
 
LinkBack Thread Tools Display Modes
Wizard
Join Date: Apr 2007
Posts: 951
#1 (permalink)  
Old 11-11-2011, 12:26 PM
Default no connection has been authorized with policy=XAUTHPSK+XAUTHSERVER

packet from 2.206.0.1:12: initial Main Mode message received on 192.168.27.15:500 but no connection has been authorized with policy=XAUTHPSK+XAUTHSERVER
2011:11:11-14:19:07 winter-do pluto[31042]: | next event EVENT_REINIT_SECRET in 3221 seconds


Hallo,

has anyone a hint?
My astaro is working behind a fritzbox. The Astaro is configured as an exposed host so that every connection is routed to the astaro.
My problem:
I can t connect from my iphone. I found an entry in the livelog but I ve no idea what is going wrong.
Thanks for help

Ralf
Reply With Quote
BAlfson's Avatar
Grandis Professorem Astaro
Join Date: Mar 2007
Location: Oklahoma City
Posts: 20,308
#2 (permalink)  
Old 11-11-2011, 03:36 PM
Default

Are you certain this isn't an issue with the Fritzbox? Are you NATting in the Frizbox?

Cheers - Bob
__________________
ACE V7 - Astaro Preferred Partner since V3
SCA/UTM - Sophos Gold Solution Partner
www.MediaSoftUSA.com
Addicted to my iPhone!
Reply With Quote
Wizard
Join Date: Apr 2007
Posts: 951
#3 (permalink)  
Old 11-12-2011, 05:32 AM
Default

Hallo,

thanks for the answer.
Do you have some hints how the fritz-box could cause the troublem.
PPTP ist working. Exposed hosts means every traffic is routed to the astaro.

Thanks
Ralf
Reply With Quote
BAlfson's Avatar
Grandis Professorem Astaro
Join Date: Mar 2007
Location: Oklahoma City
Posts: 20,308
#4 (permalink)  
Old 11-12-2011, 04:40 PM
Default

I see now that the Fritzbox is NATting to the Astaro. I don't think that will work with L2TP using a PSK. It might work with a certificate if it's not based on the IP of the Astaro. The best solution is to put the Fritzbox in bridge mode so the Astaro can have your public IP on its External interface.

Cheers - Bob
__________________
ACE V7 - Astaro Preferred Partner since V3
SCA/UTM - Sophos Gold Solution Partner
www.MediaSoftUSA.com
Addicted to my iPhone!
Reply With Quote
Wizard
Join Date: Apr 2007
Posts: 951
#5 (permalink)  
Old 12-04-2011, 10:59 AM
Default

Quote:
Originally Posted by BAlfson View Post
I see now that the Fritzbox is NATting to the Astaro. I don't think that will work with L2TP using a PSK. It might work with a certificate if it's not based on the IP of the Astaro. The best solution is to put the Fritzbox in bridge mode so the Astaro can have your public IP on its External interface.

Cheers - Bob
solved:
the fritzbox is now configured as a dsl-modem only. My astaro dials in using pppoe and , surprise surprise, vpn is working.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT. The time now is 12:07 PM.


Powered by vBulletin® Version 3.8.6
Copyright ©2000 - 2015, Jelsoft Enterprises Ltd.

These pages are specifically maintained for the discussion of firewall issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases.