I have three sites: two has PPPoE connection, with DSL modem and variable IP one has RFC1483 LLC routed, with DSL router and fixed IP
each one has IPCOP v1.4.5, and every machine is directly pingable; (the router is configurated with DMZ to IPCOP machine)
The problem is that VPN goes on two PPPoE sites, and doesn't on the other site. Seeking the "ipsec barf" I can see this: Apr 10 23:57:56 ipcop pluto[3071]: packet from xxx.xxx.xxx.xxx:500: initial Main Mode message received on 192.168.1.1:500 but no connection has been authorized with policy=PSK
(xxx.xxx.xxx.xxx is public IP of the "remote" machine) (192.168.1.1 is the red IP of IPCOP)
The lan is so configurated: router: wan: fixed ip router: lan: 192.168.1.254 | ipcop: red: 192.168.1.1 ipcop: green: 192.168.130.254 | lan 192.168.130.0/255.255.255.0
The configuration are similar on the three IPCOP machine, so the only different is on RFC1483 sites. But what?
Code:
left=xxx.xxx.xxx.xxx leftnexthop=%defaultroute leftsubnet=192.168.130.0/255.255.255.0 right=yyy.yyy.yyy.yyy rightsubnet=192.168.101.0/255.255.255.0 rightnexthop=%defaultroute dpddelay=30 dpdtimeout=120 dpdaction=hold authby=secret auto=start
[/code]