[Openswan Users] Pb between Openswan and XP via NAT
Paul Wouters
paul at xelerance.com
Fri Jun 10 01:00:00 CEST 2005
On Thu, 9 Jun 2005, Etienne M wrote:
> pluto[6207]: "nomade"[2] 192.168.10.30:4500 #1: cannot respond to IPsec SA
> request because no connection is known for
> 200.10.10.10/32===192.168.20.10:4500[C=FR, ST=Orsay, L=Essonne, O=Universite,
> CN=universite.fr]...192.168.10.30:4500[C=FR, ST=Orsay, L=Essonne,
> O=Universite, CN=nomade220]
> conn nomade
> right=%any
> left=192.168.20.10
> XP ipsec.conf file :
> conn nomade
> left=%any
> right=200.10.10.10
This does not match, presumably because of NAT-T. It seems you are missing a
rightsubnet=vhost:%no,%priv on the server.
Paul
More information about the Users
mailing list