[Openswan Users] ipsec client with openswan problem
Chun Cui
bss03arg at studserv.uni-leipzig.de
Sun Nov 26 16:10:54 EST 2006
Hello Paul,
thanks for your email!
Could I not use openswan to work only with ipsec or this is limit of the
openswan? In the same Network I can use 'greenbow' to connect the remote
vpn-gw,something like 'vpnc'(but here vpnc didn't support the remote vpn
router)
Notebook has IP 192.168.0.101 default gw 192.168.0.1
Wireless Router has IP 192.168.0.1 and 139.18.199.101
remote GateWay has www.vpn.org
Notebook makes a ipsec tunel to connect to remote gw.
thank you very much!! ;-)
> On Sun, 26 Nov 2006, Chun Cui wrote:
>
>> notebook(192.168.0.101)---> (192.168.0.1)DSL-Router(139.18.199.101)
>> --Internet--> VPN-Gateway(10.0.0.0/24)
>>
>> how can i config the ipsec.conf to connect the vpn gateway with PSK,
>> with this conf i got always the errors:
>
>> auto=start
>> left=192.168.0.101
>> #left=%defaultroute
>> leftid=@client
>> leftsubnet=192.168.0.0/24
>
> You cannot do this. leftsubnet is behind left, so left cannot be *in*
> leftsubnet.
>
> The easiest fix is to have your 192.168.0.1 machine do the IPsec and NAT.
> The second easiest fix is to renumber the IPsec server in the nat to be
> something else, eg 192.168.254.101, and make sure the NAT router still
> nat's for it. Then you can use
> left=192.168.254.101
> leftsubnet=192.168.0.0/24
>
> Actually, the zeroth easiest fix is to buy another $25/month DSL line,
> and put the ipsec server directly on its IP.
>
> Paul
More information about the Users
mailing list