[Openswan Users] WinXP Behind Nat to Openswan Server Behind NAT
Meron Lavie
lavie at netvision.net.il
Mon Jul 17 12:38:11 CEST 2006
Well, then I'll remove it. But why is the parameter causing the errors and
preventing Pluto from coming up successfully?
Lavie
-----Original Message-----
From: users-bounces at openswan.org [mailto:users-bounces at openswan.org] On
Behalf Of Jacco de Leeuw
Sent: Monday, July 17, 2006 9:41 AM
To: users at openswan.org
Subject: RE: [Openswan Users] WinXP Behind Nat to Openswan Server Behind NAT
Meron Lavie wrote:
> Since all my company's WinXP's are NAT-ted, I added "
> rightsubnet=vhost:%no,%priv ". However, if I add that parameter then my
> internal connection doesn't work anymore, and if I try "ipsec verify", I
> get:
>
> conn L2TP-PSK-EXTERNAL
> authby=secret
> rightsubnet=vhost:%no,%priv
rightsubnet= is not required for PSKs. I don't know why it is needed
for certificates and not for PSKs...
Jacco
--
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
_______________________________________________
Users at openswan.org
http://lists.openswan.org/mailman/listinfo/users
Building and Integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list