Need help on a tunnel



  • Hi everybody,

    I am trying to establish a tunnel with AWS , i can ping the Amazon gateway on the other side (phase 2 seems good !) , but i can't ping my host and i got these errors on my log :

    Jan 21 15:35:58 MyHost racoon: DEBUG: hmac(hmac_sha1)
    Jan 21 15:35:58 MyHost racoon: DEBUG: HASH computed:
    Jan 21 15:35:58 MyHost racoon: DEBUG: #0126c42fd2b 68ff143b d603d203 39ef8f3d 5e19df0e
    Jan 21 15:35:58 MyHost racoon: DEBUG: getsainfo params: loc='0.0.0.0/0' rmt='0.0.0.0/0' peer='72.21.209.193' client='72.21.209.193' id=0
    Jan 21 15:35:58 MyHost racoon: DEBUG: evaluating sainfo: loc='169.254.255.82/30', rmt='169.254.255.81/30', peer='ANY', id=0
    Jan 21 15:35:58 MyHost racoon: DEBUG: check and compare ids : value mismatch (IPv4_subnet)
    Jan 21 15:35:58 MyHost racoon: DEBUG: cmpid target: '0.0.0.0/0'
    Jan 21 15:35:58 MyHost racoon: DEBUG: cmpid source: '169.254.255.82/30'
    Jan 21 15:35:58 MyHost racoon: DEBUG: evaluating sainfo: loc='169.254.255.86/30', rmt='169.254.255.85/30', peer='ANY', id=0

    Can you help me on that ?

    Thanks



  • Your local subnet looks like 169.254.255.82/30.
    Per RFC 3927 this is a link local address which is not routable.

    Your remote subnet looks like 169.254.255.81/30.
    This is again link local, and on the same subnet of the local address.

    IPSec is supposed to connect two different subnets.

    What is your local LAN?
    What is your remote LAN (AWS)?


Log in to reply