[Openswan Users] Support for psk
Paul Wouters
paul at xelerance.com
Wed Dec 8 01:12:07 CET 2004
On Wed, 8 Dec 2004, Jacco de Leeuw wrote:
> sasa wrote:
>
>> with kernel 2.6.5/openswan 2.2.0/nat-t 0.6c is possible to use pre-shared
>> key ?
do not apply a nat-t patch with kernel 2.6. nat-t is part of 2.6 already.
> Yes, but I think you will have to use right=%any or leftid=/rightid=.
> I don't know about that kernel version. You might have to upgrade.
When using right=%any with PSK, you *must* specify left/rightid's, otherwise
there is nothing uniquely identifying an incoming client.
Paul
More information about the Users
mailing list