[strongSwan] /etc/strongswan.d/VPN.conf:1: syntax error, unexpected NAME, expecting NEWLINE or '{' or '=' [vpn]

Stephen Feyrer stephen.feyrer at btinternet.com
Fri Apr 17 12:27:42 CEST 2015 

Hi,

I am hoping someone can help me.  At first this looks like a simple error  
but I don't think it is.


To put this into some context, so you can ignore this paragraph if you're  
not interested.

A few months ago, I got my home PC - (Gentoo Linux) setup to VPN into the  
office which is a Windows environment.  Shortly after I moved house and my  
phone line.  Only at that time my ISP had a fault on the phone line at my  
new house so no internet connection.  Once the internet was resolved, the  
first thing I did was update my PC.  Next I found that my VPN was no  
longer working.  I was careful to look for messages that required  
configuration updates, I saw none for StrongSwan.




Code:

* Starting ...
/etc/strongswan.d/VPN.conf:1: syntax error, unexpected NAME, expecting  
NEWLINE or '{' or '=' [vpn]
invalid config file '/etc/strongswan.conf'
Starting strongSwan 5.2.2 IPsec [starter]...



Code:

# ipsec up vpn.office.com
/etc/strongswan.d/VPN.conf:1: syntax error, unexpected NAME, expecting  
NEWLINE or '{' or '=' [vpn]
invalid config file '/etc/strongswan.conf'
initiating Main Mode IKE_SA vpn.office.com[1] to 17.11.7.5
generating ID_PROT request 0 [ SA V V V V ]
sending packet: from 1.2.3.4[500] to 17.11.7.5[500] (212 bytes)
received packet: from 17.11.7.5[500] to 1.2.3.4[500] (116 bytes)
parsed ID_PROT response 0 [ SA V V ]
received draft-ietf-ipsec-nat-t-ike-02\n vendor ID
received FRAGMENTATION vendor ID
generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
sending packet: from 1.2.3.4[500] to 17.11.7.5[500] (244 bytes)
received packet: from 17.11.7.5[500] to 1.2.3.4[500] (304 bytes)
parsed ID_PROT response 0 [ KE No V V V V NAT-D NAT-D ]
received Cisco Unity vendor ID
received XAuth vendor ID
received unknown vendor ID: [Available On Request]
received unknown vendor ID: [Available On Request]
local host is behind NAT, sending keep alives
generating ID_PROT request 0 [ ID HASH N(INITIAL_CONTACT) ]
sending packet: from 1.2.3.4[4500] to 17.11.7.5[4500] (84 bytes)
received packet: from 17.11.7.5[4500] to 1.2.3.4[4500] (84 bytes)
parsed ID_PROT response 0 [ ID HASH V ]
received DPD vendor ID
IKE_SA vpn.office.com[1] established between  
1.2.3.4[1.2.3.4]...17.11.7.5[17.11.7.5]
generating QUICK_MODE request [Available On Request] [ HASH SA No ID ID  
NAT-OA NAT-OA ]
sending packet: from 1.2.3.4[4500] to 17.11.7.5[4500] (220 bytes)
received packet: from 17.11.7.5[4500] to 1.2.3.4[4500] (180 bytes)
parsed QUICK_MODE response [Available On Request] [ HASH SA No ID ID  
N(([Available On Request])) NAT-OA ]
received 28800s lifetime, configured 0s
no acceptable traffic selectors found
establishing connection 'vpn.office.com' failed



The only other issue of note is that the behaviour of Networkmanager  
appears to have changed during boot. Previously, there was a 1 second  
wait, now that is gone. I have searched the web for similar issues and  
found none.

  The details of how my VPN came to be setup as it is are available here:
https://forums.gentoo.org/viewtopic-t-998042-postdays-0-postorder-asc-start-0.html


code:

# strongswan.conf - strongSwan configuration file
#
# Refer to the strongswan.conf(5) manpage for details
#
# Configuration changes should be made in the included files

charon {
load_modular = yes
plugins {
include strongswan.d/charon/*.conf
}
}

include strongswan.d/*.conf



code:

# strongswan.d/VPN.conf

conn VPN-OFFICE-COM
keyexchange=ikev1
type=transport
authby=secret
ike=3des-sha1-modp1024
rekey=no
left=%defaultroute
leftprotoport=udp/l2tp
right=vpn.office.com
rightprotoport=udp/l2tp
rightid=17.11.7.5
auto=add


At the time of writing I have just tried commenting out the whole of  
VPN.conf and then going line by line uncommenting but now even with all  
the lines uncommented, I get this message.

code:

# ipsec up VPN-OFFICE-COM
/etc/strongswan.d/Xerox.conf:15: syntax error, unexpected NAME, expecting  
NEWLINE or '{' or '=' [VPN-OFFICE-COM]
invalid config file '/etc/strongswan.conf'
no config named 'VPN-OFFICE-COM'


Please help!



-- 
Kind regards


Stephen Feyrer
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20150417/29203fad/attachment.html>

More information about the Users mailing list