[Openswan Users] small dsl to dsl network vpn setup (fwd)
heath bunting
heath at irational.org
Tue Nov 15 11:39:22 CET 2005
hello all
hope you can help me
i am trying to set up a vpn connection between two small networks
both are connected to the internet via standard dsl connections
i have built 2 linux boxes (Fedora Core release 3 (Heidelberg))
configured their ips as 10.0.0.1 & 10.0.0.128
and installed openswan (openswan-2.3.1-1)
i have turned off the linux box firewalls
i have opened ports 50/51/500/4500 on both dsl router/ firewalls
when i execute:
/usr/sbin/ipsec auto --up net-to-net
i get:
022 "net-to-net": We cannot identify ourselves with either end of this
connection.
i followed the Net-to-Net connection instructions on:
http://wiki.openswan.org/index.php/Configuring
the configuration is am using on both ends is:
version 2.0 # conforms to second version of ipsec.conf specification
# basic configuration
config setup
conn net-to-net
left=212.159.64.84 # Local vitals
leftsubnet=10.0.0.8/29 #
leftid=@factory.bristol-glass.co.uk #
leftrsasigkey=0sAQOxy2v8W+cRwdAuSRryZ ...
leftnexthop=%defaultroute # correct in many situations
right=80.177.165.240 # Remote vitals
rightsubnet=10.0.0.129/28 #
rightid=@porlock.bristol-glass.co.uk #
rightrsasigkey=0sAQO7BpaUyeMqK7ufP/G0 ...
rightnexthop=%defaultroute # correct in many situations
auto=add # authorizes but doesn't start this
# connection at startup
#Disable Opportunistic Encryption
include /etc/ipsec.d/examples/no_oe.conf
can anybody spot anything obvious
many thanks
heath
More information about the Users
mailing list