[Openswan Users] error connecting to pix (Richard Witt)

Chris Patch chrispatch at intrstar.net
Tue Apr 15 20:18:15 EDT 2008


On Tue, 2008-04-15 at 19:00 -0400, users-request at openswan.org wrote:

Below is the openswan config relative to this connection:


conn someother_company
        leftid=xxx.xxx.180.242
        leftsubnet=10.64.98.0/24
        right=xxx.xxx.137.116
        rightsubnet=192.168.40.0/24
        authby=secret
        auto=start
        pfs=no
        ike=3des-md5-modp1024
        esp=3des-md5
        

And below is the relevant config from the pix


access-list COMPANY extended permit ip 10.64.98.0 255.255.255.0
192.168.40.0 255.255.255.0 



Reverse access list company.  The pix access list for encryption should
be 

access-list COMPANY extended permit 192.168.40.0 255.255.255.0
10.64.98.0


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080415/b774a6ed/attachment.html 


More information about the Users mailing list