[Openswan Users] - pending review: connection "roadwarrior" was
not up, skipped ; cannot initiate connection without knowing peer IP address
Fabio Ferreira
fabio.ferreira at markway.com.br
Fri Dec 30 10:30:05 CET 2005
Paul,
Thanks for your help!! I put in my ipsec.conf and it´s work perfectly.
conn roadwarrior_privado
leftsubnet=10.31.128.0/255.255.255.0
left=200.X.X.X
leftnexthop=200.X.X.X
leftcert=privado.pem
right=%any
--> auto=add
pfs=yes
########################################################################
##########################
On Thu, 29 Dec 2005, Fabio Ferreira wrote:
> [root at frwifp quickstarts]# ipsec auto --up roadwarrior_privado
> 029 "roadwarrior_privado": cannot initiate connection without knowing
> peer IP address (kind=CK_TEMPLATE)
You are using right=%any which means you do not know where the
roadwarrior
is. (after all, it is somewhere on the road). You should only use
auto=add
or auto=add and have the other end initiate the connection.
Paul
More information about the Users
mailing list