[Openswan Users] Re: Hi, one minor problem
Paul Wouters
paul at xelerance.com
Mon Feb 27 22:39:58 CET 2006
On Mon, 27 Feb 2006, utkarsh shah wrote:
> I am facing a problem.
>
> I am using klips 2.4.2 and user space 2.4.4
>
> what happens is i have two connections one with presharedkey and another using digital cert for roadwarrior with dynamic ip..
>
> at a time both dont get active..
>
> it gives
> 023 authentication method disagrees with "test", which is also for an unspecified peer
> 037 attempt to load incomplete connection
>
> but when i restart ipsec both gets activetd..
>
> ipsec.conf and ipsec.secret file is attached
you will need to add a distinguishing mark to the connections for pluto to be able to decide early
enough in the packet exchange which of the "any" connections to use. The easiest is to use a
leftid=@foo and rightid=@bar on the PSK conn.
Paul
--
"Do it today, tomorrow it will be illegal"
--- Source unknown
More information about the Users
mailing list