[Openswan Users] XP ok but Vista - cannot respond to IPsec SA request because no connection is known for
Tom Robinson
tom at constantstream.com
Wed Apr 11 19:04:52 EDT 2007
Jacco de Leeuw wrote:
> Tom Robinson wrote:
>
>> There is already one VPN configured for 'roadwarrior' connections that has been
>> working for a couple of years with W2K and XP. We recently got a Vista installed
>> laptop but I can't get a VPN connection with it.
>
>> conn roadwarriors
>> right=%any
>> rightrsasigkey=%cert
>> rightprotoport=17/1701
>
> Add this line:
> rightsubnet=vhost:%no,%priv
>
>> conn %default
>> keyingtries=0
>
> I would also suggest overriding this value for roadwarriors,
> for example:
>
> conn roadwarriors
> keyingtries=3
>
> Jacco
Thanks Jacco, that worked first time!
I see I should have read:
http://www.openswan.org/docs/local/README.NAT-Traversal
What is Vista doing that it needs the vhost settings and XP doesn't? Is that the
RFC 3947?
Cheers,
t.
More information about the Users
mailing list