[Openswan Users] Connecting Linux client to Netscreen VPN server
Rolf Offermanns
roffermanns at sysgo.com
Fri Nov 19 10:09:44 CET 2004
Tomislav Stambolija wrote:
> Hi,
> I am about to try to setup VPN connection from Linux (FC3) to Netscreen
> that is set to use PSK and TripleDes/SHA-1/Diffie-Hellman Group 2 in
> phase1 and TripleDes/SHA-1 in phase 2.
> Does anyone has something similar in work?
> If so, I would appreciate a lot any help with linux setup.
> Cheers,
> Tom
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
>
I see two problemns:
1. including NAT-Traversal patch (Version 0.6) [disabled]
-> Put a "nat_traversal=yes" line in the "config setup" section of your /etc/ipsec.conf file.
2. pluto[111]: "conference"[18] xxx.xxx.xxx.xxx #18: Can't authenticate: no preshared key found for `nnn.nnn.nnn.nnn' and `%any'. Attribute OAKLEY_AUTHENTICATION_METHOD
-> Check your /etc/ipsec.secrets (and post it).
-Rolf
--
Rolf Offermanns <roffermanns at sysgo.com>
SYSGO AG Tel.: +49-6136-9948-0
Am Pfaffenstein 14 Fax: +49-6136-9948-10
55270 Klein-Winternhein http://www.sysgo.com
More information about the Users
mailing list