[Openswan Users] ipsec client with openswan problem

Chun Cui bss03arg at studserv.uni-leipzig.de
Sun Nov 26 16:10:54 EST 2006

Hello Paul,
thanks for your email!

Could I not use openswan to work only with ipsec or this is limit of the 
openswan? In the same Network I can use 'greenbow' to connect the remote 
vpn-gw,something like 'vpnc'(but here vpnc didn't support the remote vpn 

Notebook has IP default gw
Wireless Router has IP and
remote GateWay has www.vpn.org

Notebook makes a ipsec tunel to connect to remote gw.

thank you very much!! ;-)

> On Sun, 26 Nov 2006, Chun Cui wrote:
>> notebook(> (
>> --Internet--> VPN-Gateway(
>> how can i config the ipsec.conf to connect the vpn gateway with PSK,
>> with this conf i got always the errors:
>>      auto=start
>>      left=
>>      #left=%defaultroute
>>      leftid=@client
>>      leftsubnet=
> You cannot do this. leftsubnet is behind left, so left cannot be *in*
> leftsubnet.
> The easiest fix is to have your machine do the IPsec and NAT.
> The second easiest fix is to renumber the IPsec server in the nat to be
> something else, eg, and make sure the NAT router still
> nat's for it. Then you can use
> 	left=
> 	leftsubnet=
> Actually, the zeroth easiest fix is to buy another $25/month DSL line,
> and put the ipsec server directly on its IP.
> Paul

More information about the Users mailing list