[Openswan Users] help for a new user
Antonio Basiaco
antonio.basiaco at aibs-lab.com
Fri May 14 18:31:06 CEST 2004
Hi,
in my intranet i have one pc with ip 192.168.0.6 and another pc that is a
gateway with 2 Network Interface Card with the follow addrressesi
192.168.0.20 e 192.168.23.254.
I would like doing a connection in tunnel mode between these 2 pcs with
openswan but i amnot able to configure /etc/ipsec/ipsec.conf files on my 2
computers.
In pc with 192.168.0.6. i have the follow
configuration :--------------------------------------
version 2.0 # conforms to second version of ipsec.conf specification
# basic configuration
config setup
# Debug-logging controls: "none" for (almost) none, "all" for lots.
# klipsdebug=all
# plutodebug=dns
# Add connections here.
# sample RoadWarrior connection
conn road
left = 192.168.0.6
leftrsasigkey = 0sAQO8l97fPXqa9y5s4P+2GNfUYcx/ZUYaHZ5eMGWx11gsbv/UsKq$
right = 192.168.0.20
rightrsasigkey = 0sAQNpY6tenSDF1UNYIKPm1Yik+ZGc9S28nZPkzo05JV/frSLqbS$
auto = add
---------------------------------------------------------------------------------------------------------
While on the gateway i have the follow configuration:
version 2.0 # conforms to second version of ipsec.conf specification
# basic configuration
config setup
# Debug-logging controls: "none" for (almost) none, "all" for lots.
# klipsdebug=all
# plutodebug=dns
# Add connections here.
# sample RoadWarrior connection
conn road
left = 192.168.0.20
leftrsasigkey = 0sAQNpY6tenSDF1UNYIKPm1Yik+ZGc9S28nZPkzo05JV/frSLqbS$
right = 192.168.0.6
rightsasigkey = 0sAQO8l97fPXqa9y5s4P+2GNfUYcx/ZUYaHZ5eMGWx11gsbv/UsKq
auto = add
---------------------------------------------------------------------------------------------------------
Doing /etc/init.d/ipsec start the process starts well.
But when i do :
ipsec auto --up road
i obtain:
104 "road" #1: STATE_MAIN_I1: initiate
010 "road" #1: STATE_MAIN_I1: retransmission; will wait 20s for response
010 "road" #1: STATE_MAIN_l1: retransmission; will wait 40s for response
.....
Sameone can help me?
Thanks a lot
--
Antonio Basiaco
Project Manager
Aibs Lab
Trieste
More information about the Users
mailing list