Problème de connexion de client VPN avec le serveur openswan et xl2pd

soumaila · Le 14/10/2013, à 15:52

Bonsoir à tous
J'ai installé et configuré le serveur Openswan et Xl2tpd sous ubuntu 12.04.
Je n'arrive pas à connecter un client Windows 7 aux serveurs.
Aidez moi svp

Voici les erreurs:

coté client (Windows7):
Impossible de trouver un certificat. Les connexions qui utilisent le protocole L2TP au dessus de IPsec necessitent l'installation d'un certificat d'ordinateur.

coté serveurs
root@soumaila-PC:/home/soumaila# tail -f /var/log/auth.log
Oct 14 15:01:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:48652: ignoring Vendor ID payload [Vid-Initial-Contact]
Oct 14 15:01:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:48652: ignoring Vendor ID payload [IKE CGA version 1]
Oct 14 15:01:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[4] 10.255.100.8 #4: responding to Main Mode from unknown peer 10.255.100.8
Oct 14 15:01:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[4] 10.255.100.8 #4: OAKLEY_GROUP 20 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:01:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[4] 10.255.100.8 #4: OAKLEY_GROUP 19 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:01:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[4] 10.255.100.8 #4: Can't authenticate: no preshared key found for `10.255.100.8' and `%any'. Attribute OAKLEY_AUTHENTICATION_METHOD
Oct 14 15:01:29 pluto[5840]: last message repeated 2 times
Oct 14 15:01:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[4] 10.255.100.8 #4: no acceptable Oakley Transform
Oct 14 15:01:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[4] 10.255.100.8 #4: sending notification NO_PROPOSAL_CHOSEN to 10.255.100.8:48652
Oct 14 15:01:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[4] 10.255.100.8: deleting connection "L2TP-PSK-NAT" instance with peer 10.255.100.8 {isakmp=#0/ipsec=#0}
Oct 14 15:10:26 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]
Oct 14 15:10:26 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: received Vendor ID payload [RFC 3947] method set to=109
Oct 14 15:10:26 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but already using method 109
Oct 14 15:10:26 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [FRAGMENTATION]
Oct 14 15:10:26 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [MS-Negotiation Discovery Capable]
Oct 14 15:10:26 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [Vid-Initial-Contact]
Oct 14 15:10:26 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [IKE CGA version 1]
Oct 14 15:10:26 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[5] 10.255.100.8 #5: responding to Main Mode from unknown peer 10.255.100.8
Oct 14 15:10:26 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[5] 10.255.100.8 #5: OAKLEY_GROUP 20 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:10:26 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[5] 10.255.100.8 #5: OAKLEY_GROUP 19 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:10:26 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[5] 10.255.100.8 #5: Can't authenticate: no preshared key found for `10.255.100.8' and `%any'. Attribute OAKLEY_AUTHENTICATION_METHOD
Oct 14 15:10:26 pluto[5840]: last message repeated 2 times
Oct 14 15:10:26 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[5] 10.255.100.8 #5: no acceptable Oakley Transform
Oct 14 15:10:26 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[5] 10.255.100.8 #5: sending notification NO_PROPOSAL_CHOSEN to 10.255.100.8:47099
Oct 14 15:10:26 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[5] 10.255.100.8: deleting connection "L2TP-PSK-NAT" instance with peer 10.255.100.8 {isakmp=#0/ipsec=#0}
Oct 14 15:10:27 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]
Oct 14 15:10:27 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: received Vendor ID payload [RFC 3947] method set to=109
Oct 14 15:10:27 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but already using method 109
Oct 14 15:10:27 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [FRAGMENTATION]
Oct 14 15:10:27 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [MS-Negotiation Discovery Capable]
Oct 14 15:10:27 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [Vid-Initial-Contact]
Oct 14 15:10:27 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [IKE CGA version 1]
Oct 14 15:10:27 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[6] 10.255.100.8 #6: responding to Main Mode from unknown peer 10.255.100.8
Oct 14 15:10:27 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[6] 10.255.100.8 #6: OAKLEY_GROUP 20 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:10:27 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[6] 10.255.100.8 #6: OAKLEY_GROUP 19 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:10:27 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[6] 10.255.100.8 #6: Can't authenticate: no preshared key found for `10.255.100.8' and `%any'. Attribute OAKLEY_AUTHENTICATION_METHOD
Oct 14 15:10:27 pluto[5840]: last message repeated 2 times
Oct 14 15:10:27 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[6] 10.255.100.8 #6: no acceptable Oakley Transform
Oct 14 15:10:27 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[6] 10.255.100.8 #6: sending notification NO_PROPOSAL_CHOSEN to 10.255.100.8:47099
Oct 14 15:10:27 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[6] 10.255.100.8: deleting connection "L2TP-PSK-NAT" instance with peer 10.255.100.8 {isakmp=#0/ipsec=#0}
Oct 14 15:10:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]
Oct 14 15:10:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: received Vendor ID payload [RFC 3947] method set to=109
Oct 14 15:10:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but already using method 109
Oct 14 15:10:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [FRAGMENTATION]
Oct 14 15:10:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [MS-Negotiation Discovery Capable]
Oct 14 15:10:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [Vid-Initial-Contact]
Oct 14 15:10:29 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [IKE CGA version 1]
Oct 14 15:10:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[7] 10.255.100.8 #7: responding to Main Mode from unknown peer 10.255.100.8
Oct 14 15:10:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[7] 10.255.100.8 #7: OAKLEY_GROUP 20 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:10:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[7] 10.255.100.8 #7: OAKLEY_GROUP 19 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:10:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[7] 10.255.100.8 #7: Can't authenticate: no preshared key found for `10.255.100.8' and `%any'. Attribute OAKLEY_AUTHENTICATION_METHOD
Oct 14 15:10:29 pluto[5840]: last message repeated 2 times
Oct 14 15:10:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[7] 10.255.100.8 #7: no acceptable Oakley Transform
Oct 14 15:10:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[7] 10.255.100.8 #7: sending notification NO_PROPOSAL_CHOSEN to 10.255.100.8:47099
Oct 14 15:10:29 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[7] 10.255.100.8: deleting connection "L2TP-PSK-NAT" instance with peer 10.255.100.8 {isakmp=#0/ipsec=#0}
Oct 14 15:10:33 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]
Oct 14 15:10:33 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: received Vendor ID payload [RFC 3947] method set to=109
Oct 14 15:10:33 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but already using method 109
Oct 14 15:10:33 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [FRAGMENTATION]
Oct 14 15:10:33 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [MS-Negotiation Discovery Capable]
Oct 14 15:10:33 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [Vid-Initial-Contact]
Oct 14 15:10:33 soumaila-PC pluto[5840]: packet from 10.255.100.8:47099: ignoring Vendor ID payload [IKE CGA version 1]
Oct 14 15:10:33 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[8] 10.255.100.8 #8: responding to Main Mode from unknown peer 10.255.100.8
Oct 14 15:10:33 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[8] 10.255.100.8 #8: OAKLEY_GROUP 20 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:10:33 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[8] 10.255.100.8 #8: OAKLEY_GROUP 19 not supported. Attribute OAKLEY_GROUP_DESCRIPTION
Oct 14 15:10:33 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[8] 10.255.100.8 #8: Can't authenticate: no preshared key found for `10.255.100.8' and `%any'. Attribute OAKLEY_AUTHENTICATION_METHOD
Oct 14 15:10:33 pluto[5840]: last message repeated 2 times
Oct 14 15:10:33 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[8] 10.255.100.8 #8: no acceptable Oakley Transform
Oct 14 15:10:33 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[8] 10.255.100.8 #8: sending notification NO_PROPOSAL_CHOSEN to 10.255.100.8:47099
Oct 14 15:10:33 soumaila-PC pluto[5840]: "L2TP-PSK-NAT"[8] 10.255.100.8: deleting connection "L2TP-PSK-NAT" instance with peer 10.255.100.8 {isakmp=#0/ipsec=#0}
Oct 14 15:17:01 soumaila-PC CRON[5985]: pam_unix(cron:session): session opened for user root by (uid=0)
Oct 14 15:17:01 soumaila-PC CRON[5985]: pam_unix(cron:session): session closed for user root

Dernière modification par soumaila (Le 14/10/2013, à 15:54)

Ubuntu-fr

Navigation

Liens de recherche

Annonce

#1 Le 14/10/2013, à 15:52

Problème de connexion de client VPN avec le serveur openswan et xl2pd

Pied de page des forums