In article <20050905210519.GA12155@colwyn.zhadum.de>,
	Matthias Scheler <tron@zhadum.de> writes:
> Things which don't work:
> 
> 1.) Phase 1 is not started when traffic is sent between the protected
>     networks. The admin of the VPN client has to use "racoonctl vc 5.6.7.8"
>     to start the phase 1 negotiation.

We finally figured out the problem by starting "raccon" on the client
with "racoon -d -v -F" and got this message:

2005-09-12 21:28:34: DEBUG: get pfkey ACQUIRE message
2005-09-12 21:28:34: DEBUG: ignore because do not listen on source address : 83.135.235.140.

After we replaced the 0.0.0.0 in these two configuration statements
in "/etc/racoon/racoon.conf"  ...

	isakmp 0.0.0.0 [500];
	isakmp_natt 0.0.0.0 [4500];

... with the current external IP address of the VPN client the automatic
tunnel setup started working fine.

	Kind regards

-- 
Matthias Scheler                                  http://scheler.de/~matthias/