[Openswan Users] Aggressive mode connection not recognized

Paul Wouters paul at xelerance.com
Sat Feb 26 14:58:16 CET 2005


On Fri, 25 Feb 2005, IPSec Interest Group wrote:

> I am trying to get aggressive mode to work, but I can't get past
> parsing the ipsec.conf file. The following connection gets added and appears
> in the 'ipsec auto --status' output. It works just fine:
>
> conn test1
>   type=tunnel
>   left=1.1.1.1
>   leftid=user1 at localhost.example.com
>   right=2.2.2.2
>   rightid=user1 at remotehost.example.com
>   auto=add
>   authby=secret
>
> The mere addition of 'aggrmode=yes' causes the connection not to be
> displayed in the 'ipsec auto --status' output:

You must specify an esp= line. This should be logged somewhere in your logs
as well.

Paul


More information about the Users mailing list