[Openswan Users] Tunnel works but Win2k VPN doesn't
Jacco de Leeuw
jacco2 at dds.nl
Mon Oct 18 17:25:43 CEST 2004
Adnan H Yusuf wrote:
> The idea is to use L2TP to get a local IP address from VPN GW on the client.
>
> - The client is a Win2k box with High Enc Pack.
> - NAT GW is a Cisco 2514 router.
> - VPN GW is a FC2 Linux box with
> - kernel 2.6.5-1.358
> - OpenS/WAN 2.2.0-2
> - l2tpd 0.69-9jdl
>
> I can set up the IPSEC tunnel from the client to VPN GW, and everything
> works fine
>
> But when I try to use the VPN dialer on Win2k to connect to the l2tpd server
> on VPN GW, this is what I get:
What is the difference between these two? Doesn't the first setup also
use the "Make New Connection" wizard?
> Oct 13 19:34:26 vpngw pluto[9987]: "roadwarrior-l2tp"[4] x.x.x.x:4500 #4: we
> require PFS but Quick I1 SA specifies no GROUP_DESCRIPTION
http://www.jacco2.dds.nl/networking/freeswan-l2tp.html#PFS
Add pfs=no to ipsec.conf for L2TP/IPsec.
Jacco
--
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
More information about the Users
mailing list