[Openswan Users] Connecting Linux client to Netscreen VPN server

Rolf Offermanns roffermanns at sysgo.com
Fri Nov 19 10:09:44 CET 2004


Tomislav Stambolija wrote:
> Hi,
>   I am about to try to setup VPN connection from Linux (FC3) to Netscreen
> that is set to use PSK  and TripleDes/SHA-1/Diffie-Hellman Group 2  in
> phase1 and TripleDes/SHA-1  in phase 2.
>   Does anyone has something similar in work?
>   If so, I would appreciate a lot any help with linux setup.
> Cheers,
> Tom 
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> 
I see two problemns:

1. including NAT-Traversal patch (Version 0.6) [disabled]
-> Put a "nat_traversal=yes" line in the "config setup" section of your /etc/ipsec.conf file.

2. pluto[111]: "conference"[18] xxx.xxx.xxx.xxx #18: Can't authenticate: no preshared key found for `nnn.nnn.nnn.nnn' and `%any'.  Attribute OAKLEY_AUTHENTICATION_METHOD
-> Check your /etc/ipsec.secrets (and post it).

-Rolf

-- 
Rolf Offermanns <roffermanns at sysgo.com>
SYSGO AG     Tel.: +49-6136-9948-0
Am Pfaffenstein 14   Fax: +49-6136-9948-10
55270 Klein-Winternhein  http://www.sysgo.com



More information about the Users mailing list