[Openswan Users] openswan and sonicwall
Martin Hicks
mort at bork.org
Wed May 2 12:26:59 EDT 2007
On Wed, May 02, 2007 at 08:53:42AM -0700, Gary W. Smith wrote:
> Has anyone gotten any of the 2.4.x series to work with sonicwall? I've
> seen some documentation on the site but have failed in all attempts. We
> tried two different configs; with aggrmode on and off. Each had their
> own errors.
>
> version 2
>
My functioning sonicwall config looks like:
conn targa
authby=secret
esp=aes128
left=aaa.bbb.ccc.ddd
leftsubnet=192.168.3.0/24
leftsourceip=192.168.3.1
leftid=aaa.bbb.ccc.ddd
right=www.xxx.yyy.zzz
rightsubnet=192.168.168.0/24
rightid=www.xxx.yyy.zzz
auto=start
my PSK line in /etc/ipsec.secrets looks like:
aaa.bbb.ccc.ddd www.xxx.yyy.zzz : PSK "blah"
I forget why we used aes128 for ESP. I *think* that got rid of NO_PROPOSAL_CHOSEN
complaints.
aaa.bbb.ccc.ddd is my static IP at home. www.xxx.yyy.zzz is the static IP of
the sonicwall.
--
Martin Hicks || mort at bork.org || PGP/GnuPG: 0x4C7F2BEE
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.openswan.org/pipermail/users/attachments/20070502/82a76354/attachment.bin
More information about the Users
mailing list