[Openswan Users] cannot respond to IPsec SA request because no
connection is known for 0.0.0.0/0
Michael Schwartzkopff
misch at multinet.de
Thu Jul 15 13:52:19 CEST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Am Donnerstag, 15. Juli 2004 12:42 schrieb Gregor Bethlen:
> Hello list,
> conn vpntest
> left=192.168.1.1
> leftcert=/root/vpncert.der
> leftid=[X.500-Name protected]
> leftca=[X.500-Name protected]
> leftrsasigkey=%cert
> #leftsubnet=192.168.1.0/24
> right=%any
> #rightnexthop=192.168.1.2
> rightid=[X.500-Name protected]
> rightca=%same
> rightrsasigkey=%cert
> rightsubnet=192.168.1.0/24
> auto=add
Hi,
you propably want to do ipsec transport and no tunnel, since you only have two
machines. So use
type = transport
left = 192.168.1.1
right = 192.168.1.2
and forget about the subnets.
- --
Dr. Michael Schwartzkopff
MultiNET Services GmbH
Bretonischer Ring 7
85630 Grasbrunn
Tel: (+49 89) 456 911 - 0
Fax: (+49 89) 456 911 - 21
mob: (+49 174) 343 28 75
PGP Fingerprint: F919 3919 FF12 ED5A 2801 DEA6 AA77 57A4 EDD8 979B
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFA9mHjqndXpO3Yl5sRAs/cAKDSt02bOuzF+kyi08FvtVfLavLIzACeIeAI
simoQmTgj25edJtvDeIO9N0=
=dBku
-----END PGP SIGNATURE-----
More information about the Users
mailing list