<div>Paul,</div>
<div> </div>
<div>I implemented the conf suggestion and I am not showing any tunnels up....when I run the following command:</div>
<div> </div>
<div>ipsec auto --up systema-systemb</div>
<div> </div>
<div>I get the following error: "no connection named systema-systemb"</div>
<div> </div>
<div>yet when I look at the config file I specifically state: </div>
<div> </div>
<div>conn systema-systemb</div>
<div> </div>
<div>any thoughts?</div>
<div> </div>
<div> </div>
<div>sorry about the additional questions but I do appreciate your help.</div>
<div> </div>
<div>Thanks,</div>
<div> </div>
<div>Josh<br><br> </div>
<div><span class="gmail_quote">On 2/8/07, <b class="gmail_sendername">Paul Wouters</b> <<a href="mailto:paul@xelerance.com">paul@xelerance.com</a>> wrote:</span>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">On Thu, 8 Feb 2007, Josh wrote:<br><br>> I think I have multiple problems here. One of them being me. After talking
<br>> to our network department they have stated that the setup is a 1 to 1 NAT.<br>> Unfortunately I provided the wrong address for System B since it is not on<br>> the same network. Its address is <a href="http://100.100.109.3">
100.100.109.3</a> as the public address. So<br>> my connection looks like this:<br>><br>> SystemA (<a href="http://100.100.110.2">100.100.110.2</a>) --->(<a href="http://100.100.109.3">100.100.109.3</a>)NAT--->SystemB(
<a href="http://192.168.1.3">192.168.1.3</a>)<br>><br>> So I am trying to find a good example online that would mimic this setup so<br>> I could use their config file but I am confused when I so no explanation as
<br>> to what the following key words mean:<br><br>on system a:<br><br>in config setup:<br>nat_traversal=yes<br><br>in conn systema-systemb:<br><br>left=<a href="http://100.100.110.2">100.100.110.2</a><br>leftrsasigkey=
<br>right=<a href="http://192.168.1.3">192.168.1.3</a><br>rightrsasigkey=<br>auto=start<br><br>on system b:<br><br>in config setup:<br>nat_traversal=yes<br>virtual_private=%v4:<a href="http://100.100.110.0/24,%v4:!192.168.1.0/24">
100.100.110.0/24,%v4:!192.168.1.0/24</a><br><br>in conn systema-systemb:<br><br>left=<a href="http://192.168.1.3">192.168.1.3</a><br>leftrsasigkey=<br>right=%any<br>rightrsasigkey=<br>auto=add<br><br>Values for the rsa keys can be obtained by running: ipsec showhostkey --left or
<br>ipsec showhostkey --right on those systems.<br><br>Paul<br>--<br>Building and integrating Virtual Private Networks with Openswan:<br><a href="http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155">http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
</a><br></blockquote></div><br>