[Openswan Users] Road Warrior users and PSK
Andy
fs at globalnetit.com
Wed Sep 14 16:41:37 CEST 2005
On Wed, 2005-09-14 at 16:17 -0300, Thiago Campos wrote:
> ipsec.secrets
>
> 172.17.33.2 0.0.0.0: PSK "phase"
>
Try making that just:
172.17.33.2 : PSK "phase"
or
172.17.33.2 %any: PSK "phase"
Remember to do 'ipsec auto --rereadsecrets' if you change that file!
The manpage for ipsec.secrets does say "Currently, the obsolete notation
0.0.0.0 may be used in place of %any". Maybe that's not true any more?
> Sep 14 16:12:42 sbf-vpn pluto[4807]: "sbfroad"[7] 172.17.33.16 #7: Can't
> authenticate: no preshared key found for `172.17.33.2' and `%any'.
> Attribute OAKLEY_AUTHENTICATION_METHOD
More information about the Users
mailing list