[Openswan Users] openswan with my w2k not work for now.
Jacco de Leeuw
jacco2 at dds.nl
Wed Oct 19 12:35:42 CEST 2005
faf wrote:
> i use Openswan Version 2.4.0 on GW, and ebootis on my win2k..
> I need to make a roadwarrior connection.
> After generating x509 cert,.. this not work for me.
I think you will need to provide a bit more information than just
"this not work"... :-) What does the logfile say?
> config setup
> virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.1.0/24
> #virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16
No, this should be:
virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16,%v4:!192.168.1.0/24
> klipsdebug=all
> plutodebug=all
Chances are that this is a configuration problem and not an Openswan
bug, so you better trim the error messages:
klipsdebug=none
plutodebug=none
> conn roadwarrior-l2tp
>
> conn roadwarrior-l2tp-updatedwin
You can remove these sections (or use 'auto=ignore') because you are
using IPsec and not L2TP/IPsec.
> on GW:
> when i try..
> ipsec auto --verbose --up roadwarrior
> 029 "roadwarrior": cannot initiate connection without knowing peer IP
> address (kind=CK_TEMPLATE)
You have to start road warrior connections from the road warrior,
not from the Openswan gateway. How could the gateway know the
road warrior's IP address if it changes all the time?
Jacco
--
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
Mosquitos suck
More information about the Users
mailing list