[Openswan Users] FQDN in ipsec.conf

Paul Wouters paul at xelerance.com
Tue Aug 9 12:53:28 CEST 2005


On Tue, 9 Aug 2005, naveen kumar wrote:

> I have configured the ipsec.conf as below
>
> conn static-dynamic
>    type=tunnel
>    left=xxx.xxx.xxx.xxx
>    leftid=@www.naveen1.com
>    right=%any
>    rightid=@www.naveen2.com
>    auth=esp
>    authby=secret
>    pfs=yes
>    keyexchange=ike
>    auto=add
>
> ipsec.secrets
> -------------
> @www.naveen1.com @www.naveen2.com : PSK "presharedkey"
>
> when I do up the connection the following error is
> coming.
>
> 029 "static-dynamic": cannot initiate connection
> without knowing peer IP address

left cannot connect to right since the location of right is unknown (any). You
must initiate from right to left.

Paul


More information about the Users mailing list