[Openswan Users] Is it possible to have multiple roaming users for an IPSec Server with PSK
PVG Ravi Kumar
pvgravi at dlink.co.in
Mon Dec 8 21:50:59 EST 2008
Thank you all for the support
It was working fine with a slight modification in the ipsec.secrets file
I modified with the secrets file as below
@serv.com @roaminguser1.com : PSK "password"
@serv.com @roaminguser2.com : PSK "password"
Initially it was like this
@serv.com %any : PSK "password"
Thank you very much
Ravi
-----Original Message-----
From: Paul Wouters [mailto:paul at xelerance.com]
Sent: Tuesday, December 09, 2008 12:46 AM
To: PVG Ravi Kumar
Cc: users at openswan.org
Subject: Re: [Openswan Users] Is it possible to have multiple roaming users
for an IPSec Server with PSK
On Mon, 8 Dec 2008, PVG Ravi Kumar wrote:
> I am facing some problems when i try to connect multiple roaming users
> to the IPSec Server with PSK. When I have only one roaming user it is
> working fine without any problem.
Only with the same PSK.
> conn RoamingUser1
> authby=secret
> left=192.168.10.173
> leftid=@serv.com
> leftsubnet=192.168.200.1/24
> right=%any
> rightid=@roaminguser1.com
> ike=3des-sha1-modp1024
> auth=esp
> esp=3des-sha1
> auto=add
> conn RoamingUser2
> authby=secret
> left=192.168.10.173
> leftid=@serv.com
> leftsubnet=192.168.200.1/24
> right=%any
> rightid=@roaminguser2.com
> ike=3des-sha1-modp1024
> auth=esp
> esp=3des-sha1
> auto=add
>
>
> I added the following line to my ipsec.secrets file
> @serv.com %any : PSK "password"
>
> IP of Server:192.168.10.173
> IP of RoamingUser1: 192.168.10.193
> IP of RoamingUser2: 192.168.10.178
>
> Roaming User side connections
>
> conn RoamingUser1
> authby=secret
> left=%defaultroute
> leftid=@roaminguser1.com
> right=192.168.10.173
> rightid=@serv.com
> rightsubnet=192.168.200.1/24
> ike=3des-sha1-modp1024
> auth=esp
> esp=3des-sha1
> auto=add
> ipsec.secrets:
> @serv.com @roaminguser1.com : PSK "password"
>
> conn RoamingUser2
> authby=secret
> left=%defaultroute
> leftid=@roaminguser2.com
> right=192.168.10.173
> rightid=@serv.com
> rightsubnet=192.168.200.1/24
> ike=3des-sha1-modp1024
> auth=esp
> esp=3des-sha1
> auto=add
>
> ipsec.secrets:
> @serv.com @roaminguser2.com : PSK "password"
>
>
> It is working fine if I have one connection at a time. When I
> have both, only the first one is working.
> I am attaching the log (server side) with this mail
>
> Please let me know if I miss anything in the config file or if I need to
> add anything in the config file.
I think that should work, can you show the logs to see what's going on?
Paul
DISCLAIMER: This message is proprietary to D-Link (India) Limited and is
intended solely for the use of the individual to whom it is addressed. It
may contain privileged or confidential information and should not be
circulated or used for any purpose other than for what it is intended. If
you have received this message in error, please notify the originator
immediately. If you are not the intended recipient, you are notified that
you are strictly prohibited from using, copying, altering, or disclosing the
contents of this message. D-Link (India) Limited accepts no responsibility
for loss or damage arising from the use of the information transmitted by
this email including damage from virus.
More information about the Users
mailing list