[Openswan Users] Is it possible to have multiple roaming users for an IPSec Server with PSK
Paul Wouters
paul at xelerance.com
Mon Dec 8 14:15:32 EST 2008
On Mon, 8 Dec 2008, PVG Ravi Kumar wrote:
> I am facing some problems when i try to connect multiple roaming users
> to the IPSec Server with PSK. When I have only one roaming user it is
> working fine without any problem.
Only with the same PSK.
> conn RoamingUser1
> authby=secret
> left=192.168.10.173
> leftid=@serv.com
> leftsubnet=192.168.200.1/24
> right=%any
> rightid=@roaminguser1.com
> ike=3des-sha1-modp1024
> auth=esp
> esp=3des-sha1
> auto=add
> conn RoamingUser2
> authby=secret
> left=192.168.10.173
> leftid=@serv.com
> leftsubnet=192.168.200.1/24
> right=%any
> rightid=@roaminguser2.com
> ike=3des-sha1-modp1024
> auth=esp
> esp=3des-sha1
> auto=add
>
>
> I added the following line to my ipsec.secrets file
> @serv.com %any : PSK "password"
>
> IP of Server:192.168.10.173
> IP of RoamingUser1: 192.168.10.193
> IP of RoamingUser2: 192.168.10.178
>
> Roaming User side connections
>
> conn RoamingUser1
> authby=secret
> left=%defaultroute
> leftid=@roaminguser1.com
> right=192.168.10.173
> rightid=@serv.com
> rightsubnet=192.168.200.1/24
> ike=3des-sha1-modp1024
> auth=esp
> esp=3des-sha1
> auto=add
> ipsec.secrets:
> @serv.com @roaminguser1.com : PSK "password"
>
> conn RoamingUser2
> authby=secret
> left=%defaultroute
> leftid=@roaminguser2.com
> right=192.168.10.173
> rightid=@serv.com
> rightsubnet=192.168.200.1/24
> ike=3des-sha1-modp1024
> auth=esp
> esp=3des-sha1
> auto=add
>
> ipsec.secrets:
> @serv.com @roaminguser2.com : PSK "password"
>
>
> It is working fine if I have one connection at a time. When I
> have both, only the first one is working.
> I am attaching the log (server side) with this mail
>
> Please let me know if I miss anything in the config file or if I need to
> add anything in the config file.
I think that should work, can you show the logs to see what's going on?
Paul
More information about the Users
mailing list