[Openswan Users] net 2 net connection
Andy
fs at globalnetit.com
Wed Sep 14 16:31:56 CEST 2005
On Wed, 2005-09-14 at 20:17 +0100, William Man wrote:
> Sep 14 15:47:56 site1 pluto[6481]: "net-to-net" #2: IPsec Transform
> [ESP_AES
> (0), AUTH_ALGORITHM_HMAC_SHA1] refused due to insecure key_len and
> enc. alg.
> not listed in "esp" string
> Sep 14 15:47:56 site1 pluto[6481]: "net-to-net" #2: no acceptable
> Proposal
> in IPsec SA
>
Seems site2 is proposing AES, your site1 doesn't like it. You could try
setting 'esp=3des' in the conn on site2.
--
Andy <fs at globalnetit.com>
More information about the Users
mailing list