[Swan] Help configuring libreswan with XAUTH, NSS and remote clients (road warriors)
Paul Wouters
paul at nohats.ca
Fri Sep 19 18:35:14 EEST 2014
On Fri, 19 Sep 2014, Wolfgang Nothdurft wrote:
>>> Sep 18 11:54:17 ip-172-31-48-104 pluto[2054]: ERROR: asynchronous
>>> network error report on eth0 (sport=500) for message to 70.117.100.63
>>> port 500, complainant 70.117.100.63: Connection refused [errno 111,
>>> origin ICMP type 3 code 3 (not authenticated)]
> This also can happen if the vpn service is not allowed to read the
> certificate. The vpn service will stop to listen on udp/500 than.
>
> Can you check the permissions of the certificate in the keychain settings on
> your mac or check the log on mac site.
Added to the wiki. Thanks!
Paul
More information about the Swan
mailing list