[Swan] Help configuring libreswan with XAUTH, NSS and remote clients (road warriors)

Paul Wouters paul at nohats.ca
Fri Sep 19 18:35:14 EEST 2014


On Fri, 19 Sep 2014, Wolfgang Nothdurft wrote:

>>> Sep 18 11:54:17 ip-172-31-48-104 pluto[2054]: ERROR: asynchronous
>>> network error report on eth0 (sport=500) for message to 70.117.100.63
>>> port 500, complainant 70.117.100.63: Connection refused [errno 111,
>>> origin ICMP type 3 code 3 (not authenticated)]

> This also can happen if the vpn service is not allowed to read the 
> certificate. The vpn service will stop to listen on udp/500 than.
>
> Can you check the permissions of the certificate in the keychain settings on 
> your mac or check the log on mac site.

Added to the wiki. Thanks!

Paul


More information about the Swan mailing list