[Openswan Users] openswan - zyxel problem
Paul Wouters
paul at xelerance.com
Sun Apr 24 16:30:52 CEST 2005
On Tue, 1 Jan 2002, Dominik Schmid wrote:
> I have a little problem with my openswan-zyxel vpn connection.
> Some tips would be great.
> 192.168.2.0/24===192.168.0.104[S=C]...192.168.0.187[S=C]===192.168.10.34/32
> VPN-Subnet VPN-Gateway Zyxel-Router Home-PC
>
> The default route for the zyxel-router and the vpn-gateway is 192.168.0.1
> conn zywall
> left=192.168.0.104
> leftsubnet=192.168.2.0/24
> right=192.168.0.187
> rightsubnet=192.168.10.0/24
> auto=start
> pfs=yes
> authby=secret
[ lots of debug snipped, people please DO NOT use debug options for configuration
problems!! ]
> Apr 21 23:02:41 gibraltar pluto[7739]: "zywall" #3: cannot respond to IPsec SA
request because no connection is known for 192
.168.2.0/24===192.168.0.104[S=C]...192.168.0.187[S=C]===192.168.10.34/32
Seems the other end is asking for 192.168.10.34/32 instead of 192.168.10.0/24
> Local ID type= IP Content= 0.0.0.0
> My IP Addr= 192.168.0.187
> Peer ID type= IP Content= 0.0.0.0
> Secure Gateway Address= 192.168.0.104
> Protocol= 0 DNS Server= 192.168.2.4
> Local: Addr Type= SINGLE
> Local IP Addr= 192.168.10.34
> Port Start= 0 End= N/A
I assume SINGLE should be SUBNET.
> Remote: Addr Type= SUBNET
> IP Addr Start= 192.168.2.0 End/Subnet Mask= 255.255.255.0
> Port Start= 0 End= N/A
> Enable Replay Detection= Yes
> Key Management= IKE
> Edit Key Management Setup= No
Paul
More information about the Users
mailing list