[Openswan Users] intel Macs

Brett Curtis brettcurtis at iwfinancial.com
Wed Apr 12 12:26:47 CEST 2006 

sorry did not respond to list...  and after reading jaccos mail I  
think I have the correct settings?
On Apr 12, 2006, at 11:22 AM, Brett Curtis wrote:

>
> On Apr 12, 2006, at 11:01 AM, Paul Wouters wrote:
>
>> On Wed, 12 Apr 2006, Brett Curtis wrote:
>>
>>> Hi again. Another Mac issues. With my working roadwarrior setup  
>>> ppc Macs and
>>> windows connect fine. However the new intel mac can not connect  
>>> it tries to
>>> pull my xp-conn.
>>>
>>> My ppc mac pulls this connection.
>>
>> I do not understand "pull" here. What is your intel mac running?  
>> linux?
>> or did you mean you used internet connect, and are writing the  
>> conns on
>> the linux server?
>
> Sorry for the confusion. By pull I meant the internet connect pulls  
> this conn from my linux ipsec server. So your second comment.
>
>>
>>> conn roadwarrior-osx
>>>        leftprotoport=17/1701
>>>        rightprotoport=17/%any
>>>        rekey=no
>>>        also=roadwarrior
>>>
>>> The rekey=no is just a test to try to stop my ppc mac from  
>>> loosing connection.
>>> but it still does. This is a different issue..
>>
>> If it is the server, i tshould ALWAYS have rekey=no, because you  
>> cannot
>> rekey to an "%any" connection, the client has to initiate the rekey.
>
> Ok I will keep that in place then.
>>
>>> While the intel mac tries to pull
>>>
>>> conn roadwarrior-xp
>>>        leftprotoport=17/1701
>>>        rightprotoport=17/1701
>>>        also=roadwarrior
>>
>> If this is the server, i would phase out one of those connections.  
>> Just
>> don't support non-updated XP machines with 1701, or just allow  
>> them all
>> using %any, but don't do both connections.
>
> So you are saying a conn like this would support both OSX & XP?
>
> conn roadwarrior-any
> 	leftprotoport=17/1701
> 	rightprotport=17/%any
> 	rekey=no
> 	also=roadwarrior
>
> And when you say dont support non-updated XP machine what would  
> that conn look like?
>
>>
>> Paul
>
> TIA

Brett Curtis
IT Manager
IW Financial
Office: 207-773-2333 ext 2097
Home Office: 207-627-3133
Cell: 207-807-2777

More information about the Users mailing list