[Openswan Users] question from a newbie
Paul Wouters
paul at xelerance.com
Fri Nov 26 11:44:45 CET 2004
On Fri, 26 Nov 2004, Cihan Esen wrote:
> My simulation scheme looks like this:
>
> LAN---IPSEC_GW---Router---IPSEC_GW---LAN
Actually, your setup does not look like that, it looks like
> LAN---IPSEC_GW---Router---IPSEC_GW---LAN
SUBNET1-IPSECGW---LAN---IPSECGW-SUBNET2
> I am using freeswan2.01 and Linux Mandrake9.2 on both IPSEC_GW PCs..
It's a bit old, but should work for for this simple case.
> klipsdebug=all
> plutodebug=all
Please dont use those unless you are debugging code, not configurations.
> conn pc2pc
> left=122.122.122.141
> leftsubnet=192.168.1.0/24
> leftnexthop=122.122.122.254
> right=122.122.122.142
> rightsubnet=192.168.2.0/16
> rightnexthop=122.122.122.254
> authby=rsasig
> auto=start
You can try adding type=%direct. Or better, really try and build your
test setup with the ipsec gateway not being in the same subnet (122.122.122.0/24)
Next time, set those debug options to none, and run 'ipsec barf' to give us
better information to look at what is happening.
Paul
More information about the Users
mailing list