Project

General

Profile

Actions

Bug #4741

closed

IPSEC mobile client problem

Added by ruben rpuserh over 9 years ago. Updated about 9 years ago.

Status:
Not a Bug
Priority:
Normal
Assignee:
-
Category:
IPsec
Target version:
-
Start date:
06/03/2015
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
Affected Architecture:

Description

Problem with mobile client connection.
I seted up IPSEC vpn with this instruction (https://doc.pfsense.org/index.php/IPsec_Road_Warrior/Mobile_Client_How-To)
From my MacOSX I can connect with no problems.
But MyAndroid is not connecting. I tryed from android versions 5.0.1 and 4.4.4
No success. Log is attached.
This is very origin for me to fix this on my phone.

Thanks in advance.

Jun 3 13:11:23 charon: 06[CFG] <6> looking for XAuthInitPSK peer configs matching 192.168.5.5...192.168.5.7[]
Jun 3 13:11:23 charon: 06[CFG] <6> selected peer config "con1"
Jun 3 13:11:23 charon: 06[ENC] <con1|6> generating AGGRESSIVE response 0 [ SA KE No ID NAT-D NAT-D HASH V V V V V ]
Jun 3 13:11:23 charon: 06[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:26 charon: 06[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:26 charon: 06[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:26 charon: 06[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:26 charon: 06[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:27 charon: 06[IKE] <con1|6> sending retransmit 1 of response message ID 0, seq 1
Jun 3 13:11:27 charon: 06[IKE] <con1|6> sending retransmit 1 of response message ID 0, seq 1
Jun 3 13:11:27 charon: 06[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:29 charon: 08[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:29 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:29 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:29 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:32 charon: 08[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:32 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:32 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:32 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:34 charon: 08[IKE] <con1|6> sending retransmit 2 of response message ID 0, seq 1
Jun 3 13:11:34 charon: 08[IKE] <con1|6> sending retransmit 2 of response message ID 0, seq 1
Jun 3 13:11:34 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:35 charon: 08[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:35 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:35 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:35 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:38 charon: 08[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:38 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:38 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:38 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:41 charon: 08[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:41 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:41 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:41 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:44 charon: 08[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:44 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:44 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:44 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:47 charon: 08[IKE] <con1|6> sending retransmit 3 of response message ID 0, seq 1
Jun 3 13:11:47 charon: 08[IKE] <con1|6> sending retransmit 3 of response message ID 0, seq 1
Jun 3 13:11:47 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:47 charon: 08[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:47 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:47 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:47 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:50 charon: 08[NET] <con1|6> received packet: from 192.168.5.7500 to 192.168.5.5500 (647 bytes)
Jun 3 13:11:50 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:50 charon: 08[IKE] <con1|6> received retransmit of request with ID 0, retransmitting response
Jun 3 13:11:50 charon: 08[NET] <con1|6> sending packet: from 192.168.5.5500 to 192.168.5.7500 (432 bytes)
Jun 3 13:11:53 charon: 08[JOB] <con1|6> deleting half open IKE_SA after timeout

Actions #1

Updated by Chris Buechler over 9 years ago

  • Status changed from New to Feedback
  • Assignee deleted (Bill Marquette)
  • Priority changed from Urgent to Normal
  • Affected Architecture added
  • Affected Architecture deleted (amd64)

this is probably the Android racoon bug with NAT-D. what does the client log show?

Actions #2

Updated by Chris Buechler about 9 years ago

  • Status changed from Feedback to Not a Bug
  • Affected Version deleted (2.2.2)

issue is in Android/racoon

Actions

Also available in: Atom PDF