<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=UTF-8" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Hello guys<br>
<br>
I'm trying to setup the openswan site-to-site vpn, but didn't work.<br>
Any suggestion?<br>
<br>
my network looks like below<br>
<br>
subnet1-----------gateway1---------------- Internet
--------------------gateway2-----------subnet2<br>
<br>
gateway1 using PPPoE<br>
gateway2 using PPPoE<br>
subnet1(192.168.2.0/24)
<br>
subnet2(192.168.6.0/24)<br>
<br>
Two gateways using <big><b>PPPoE</b></big> both to connect Internet.<br>
<br>
my openswan configuration<br>
<br>
conn site_192.168.2.0_24-192.168.6.0_24<br>
left=a.b.c.d<br>
leftsubnet=192.168.2.0/24<br>
right=w.x.y.z<br>
rightsubnet=192.168.6.0/24<br>
ike=AES256-SHA1-MODP1536,AES256-SHA1-MODP1024,AES256-SHA1-MODP768<br>
esp=AES256-SHA1-96<br>
dpddelay=10<br>
dpdtimeout=15<br>
keyingtries=%forever<br>
keylife=24h<br>
ikelifetime=8h<br>
rekey=no<br>
rekeymargin=9m<br>
pfs=yes<br>
pfsgroup=MODP1024<br>
leftupdown="/ramfs/bin/ipsec_updown.exe"<br>
rightupdown="/ramfs/bin/ipsec_updown.exe"<br>
auto=add<br>
<br>
<br>
<br>
conn site_192.168.6.0_24-192.168.2.0_24<br>
left=w.x.y.z<br>
leftsubnet=192.168.6.0/24<br>
right=a.b.c.d<br>
rightsubnet=192.168.2.0/24<br>
ike=AES256-SHA1-MODP1536,AES256-SHA1-MODP1024,AES256-SHA1-MODP768<br>
esp=AES256-SHA1-96<br>
dpddelay=10<br>
dpdtimeout=15<br>
keyingtries=%forever<br>
keylife=24h<br>
ikelifetime=8h<br>
rekey=no<br>
rekeymargin=9m<br>
pfs=yes<br>
pfsgroup=MODP1024<br>
leftupdown="/ramfs/bin/ipsec_updown.exe"<br>
rightupdown="/ramfs/bin/ipsec_updown.exe"<br>
auto=add
</body>
</html>