[Openswan Users] small dsl to dsl network vpn setup (fwd)

heath bunting heath at irational.org
Sun Nov 27 11:53:26 CET 2005


hello all

hope you can help me

i am trying to set up a vpn connection between two small networks

both are connected to the internet via standard dsl connections

i have built 2 linux boxes (Fedora Core release 3 (Heidelberg))

configured their ips as 10.0.0.1 & 10.0.0.128

and installed openswan (openswan-2.3.1-1)

i have turned off the linux box firewalls

i have opened ports 50/51/500/4500 on both dsl router/ firewalls

when i execute:

   /usr/sbin/ipsec auto --up net-to-net

i get:

   022 "net-to-net": We cannot identify ourselves with either end of this 
connection.

i followed the Net-to-Net connection instructions on:

   http://wiki.openswan.org/index.php/Configuring

the configuration is am using on both ends is:

version 2.0     # conforms to second version of ipsec.conf specification

# basic configuration
config setup

conn net-to-net
     left=212.159.64.84                 # Local vitals
     leftsubnet=10.0.0.8/29         #
     leftid=@factory.bristol-glass.co.uk         #

leftrsasigkey=0sAQOxy2v8W+cRwdAuSRryZ ...
leftnexthop=%defaultroute      # correct in many situations
     right=80.177.165.240           # Remote vitals
     rightsubnet=10.0.0.129/28        #
     rightid=@porlock.bristol-glass.co.uk        #

rightrsasigkey=0sAQO7BpaUyeMqK7ufP/G0 ...
rightnexthop=%defaultroute     # correct in many situations
     auto=add                       # authorizes but doesn't start this
                                    # connection at startup

#Disable Opportunistic Encryption
include /etc/ipsec.d/examples/no_oe.conf

can anybody spot anything obvious ?

many thanks

heath


More information about the Users mailing list