[Openswan Users] WinXP and "cannot respond to IPsec"
Trevor Benson
tbenson at a-1networks.com
Sun Mar 14 03:10:50 CET 2004
> conn vpngateway
> left=192.168.0.70
> leftnexthop=192.168.0.1
> leftrsasigkey=%cert
> leftcert=gatecert.pem
> leftprotoport=17/1701
> right=%any
> rightrsasigkey=%cert
> pfs=no
> rightprotoport=17/0
> keyingtries=0
> disablearrivalcheck=no
> auto=add
>
Shot in the dark, but I think you may have reversed the leftprotoport
and rightprotoport. I may have also misread the diagram since it got
tweaked by my email :).
Trevor Benson
If left is the firewall, and right is the Microsoft Client, then swap
the protoports: left 17/0 and right 17/1701.
Trevor Benson
More information about the Users
mailing list