Thanks for your proposal,It works!<br><br>Also,I found a strange result:<br>If I use left=FQDN and right=%any, it will not work.saying that:<br><div style="margin-left: 40px;">022 connection must specify host IP address for our side<br>
</div><div style="margin-left: 40px;">
037 attempt to load incomplete connection<br></div>If I use both left=FQDN and right=IP or FQDN, it will work.<br><br>If I use left=%defaultroute,right=%any on gwB,and set left=%defaultroute,right=<FQDN of gwB> on roadwarriors as your suggestion,it will work too.<br>
<br><br><div class="gmail_quote">2009/4/14 Paul Wouters <span dir="ltr"><<a href="mailto:paul@xelerance.com">paul@xelerance.com</a>></span><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="im">On Mon, 13 Apr 2009, Curu Wong wrote:<br>
<br>
</div><div class="im"><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
I found that the book<<Building and Integrating Virtual Private Networks<br>
with Openswan>> ,page 91, said that we can use a host name in left= ...<br>
and right=.... however,Even after I set USE_DYNAMICDNS?=true in<br>
Makefile.inc and compile openswan again,When I add a connection with<br>
left=<a href="http://somehost.dyndns.org" target="_blank">somehost.dyndns.org</a>,it still failed,saying that :<br>
<br>
022 connection must specify host IP address for our side<br>
037 attempt to load incomplete connection<br>
</blockquote>
<br></div>
For your end, you should use the local ip/hostname or if it is<br>
dynamic, use %defaultroute. For the remote end, you specify the<br>
remote ip or the remote dns hostname. Openswan 2.6.22 will have<br>
some fixes where dynamic dns did not work as expected (eg when the<br>
name specified did not exist when loading the connection)<br><font color="#888888">
<br>
Paul<br>
</font></blockquote></div><br>