[Openswan Users] Ipsec over Fedora Core 4

Andre Monroy amonroy at goodfoodssa.com
Wed Nov 15 09:31:38 EST 2006 

Hi, 

I have a problem implementing VPN tunnel Lan to Lan using two host fedora 4,
obviously i have installed openswan-2.4.4-1.rpm and
openswan-docs-2.4.4-1.rpm. This is my ipsec.conf:

 

NODE A

#########################################################

Version 2.0       #conforms to second version of ipsec.conf specification

#basic configuration

Config setup

 Interfaces=”ipsec0=eth0”

 Nat_traversal=yes

 

Conn sucursal

 type=tunnel

 left=[192.168.16.12

 leftsubnet=192.168.20.0/24

 right=192.168.16.13

 rightsubnet=192.168.10.0/24

 keyingtries=%forever

 authby=secret

 auto=start

 

include /etc/ipsec.d/examples/no_oe.conf

#########################################################

 

NODE B

#########################################################

Version 2.0       #conforms to second version of ipsec.conf specification

#basic configuration

Config setup

 Interfaces=”ipsec0=eth0”

 Nat_traversal=yes

 

Conn sucursal

 type=tunnel

 left=[192.168.16.13

 leftsubnet=192.168.10.0/24

 right=192.168.16.12

 rightsubnet=192.168.20.0/24

 keyingtries=%forever

 authby=secret

 auto=start

 

include /etc/ipsec.d/examples/no_oe.conf

#########################################################

 

Then 

I used ipsec ranbits 256 > /etc/ipsec.secrets and send this file by email
from node A to node B, and put in /etc/ipsec.secrets

I used NAT in both nodes. 

But my vpn are not connected, when i exec, my linux showme this:

 

#########################################################

Cheking your system to see if IPsec got installed and started correctly

Version check and ipsec on-path                                   OK

Checking for IPsec support in kernel                               OK

Checking for RSA private key (/etc/ipsec.secrets)           OK

Checking that Pluto is running                                        OK

Two or more interfaces found, checking IP forwarding      OK

Checking NAT and MASQUERADEing                           OK

Checking for ‘ip’ command                                            OK

Checking for ‘setkey’command for NETKEY IPsec stack support OK

Oportunistic Encrytion Support
DISSABLED

##########################################################

 

And when i exec “service ipsec status”

 

#############################

IPsec running    - pluto pid: 2836

Pluto pid 2836

No tunnels up

############################

 

I was searching in the web and I was reading the manual, but I didn’t found
anything to helpme, I really appreciate if the forum send some “tips” to
review or maybe and the error in my configuration. With this email I send
you my network diagram.

I prefer if you send me an answer to my e-mail, and then I promise do a
resume to all the community.

Many thanks.

 

André Monroy Tenorio 
Soporte Técnico y Redes 
Telf:4170700 ( 596 )
Nextel. 408*3459

Cel 93449199



 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20061115/7631262b/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 2489 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/users/attachments/20061115/7631262b/attachment-0001.gif 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: vpn-net.JPG
Type: image/jpeg
Size: 61274 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/users/attachments/20061115/7631262b/attachment-0001.jpe

More information about the Users mailing list