[Openswan Users] DIGICONNECT

[Dale Taylor]

Hello again.

 

Has anyone had success getting openswan to work with digi connectport VPN
WAN device? 

I have the following settings:

 

conn mobile

        type=tunnel

        keylife=3600s

        authby=secret

        auto=start

        keyexchange=ike

        pfs=yes

        ike=3des-md5-modp1024

        esp=3des-sha1,3des-md5

        # LOCAL

        left=194.0.**

        leftsubnet=192.168.10.0/24

        leftid=194.0.**

        # leftid=me at englandid.org

        leftnexthop=%defaultroute

        # REMOTE

        right=194.0.158.*

        rightsubnet=192.168.240.0/24

        rightnexthop=%defaultroute

        rightid=00:40:9D:2E:14:7D at digi.com

        ikelifetime=1h

        dpddelay=30

        dpdtimeout=120

        dpdaction=clear

 

And on the VPN Conenct WAN thing:

IKE Use ID: 00:40:9d:2e:14:7d at digi.com

Con Mode Main

Dieffe Hellman Group 2

PFS Forward Enable

IKE Setting: 3DES-MD5-3600

VPN POLICY:

Endpoint: 194.0.**

Tunnel: ISAKMP

Local Net: 192.168.240.0

Remote Net: 192.168.10.0

Pass: (Same shared secret as above)

3-DES-MD5-3600

 

The syslog reports:

 

Mar 14 12:07:33 openserver isakmpd[1245]: transport_send_messages: or the
responsemessage did not reach us back

Mar 14 12:09:33 openserver isakmpd[1245]: transport_send_messages: giving up
on message 0x826a3b0, exchange ISAKMP-peer-west

Mar 14 12:09:33 openserver isakmpd[1245]: transport_send_messages: either
this message did not reach the other peer

Mar 14 12:09:33 openserver isakmpd[1245]: transport_send_messages: or the
responsemessage did not reach us back

 

Any ideas??

 

Many thanks

 

Dale

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20070314/8ea248bb/attachment.html