[Openswan Users] Re: Openswan <-> Watchguard Firebox
Paul Wouters
paul at xelerance.com
Sun Nov 20 06:58:43 CET 2005
On Sat, 19 Nov 2005, Lenon Kitchens A wrote:
> After making some changes to the Watchguard box, I'm now getting past the
> NO_PROPOSAL_CHOSEN error. However, now I am really and truly stuck.
>
> This is the output of my syslog:
> Nov 19 22:01:39 malachai pluto[4429]: "MyCompany" #1: initiating Aggressive
> Mode #1, connection "MyCompany"
Did you have aggrmode=yes? I did not see that in your connection configuration.
> > > config setup
> > > #interfaces="%defaultroute"
> > > interfaces="ipsec0=ath0"
> > > nat_traversal=yes
> > >
> > > # Add connections here
> > >
> > > conn MyCompany
> > > keyingtries=0
> > > authby=secret
> > > left=<Watchguard public IP protected>
> > > leftnexthop=<Watchguard gateway protected>
> > > leftsubnet=10.0.2.0/24
> > > # I've also tried my router's public IP and Gateway for the next two
> > > right=192.168.1.103
> > > rightnexthop=192.168.1.1
> > > rightsubnet=192.168.1.0/24
> > > auto=add
> > >
> > > #Disable Opportunistic Encryption
> > > include /etc/ipsec/ipsec.d/examples/no_oe.conf
More information about the Users
mailing list