[Openswan Users] no preshared key found if using %any and PSK
kulkanie at gmx.net
Mon Jan 14 09:04:29 EST 2008
I am using Openswan 2.4.8 and have stumbled across this seemingly old problem that %any is not working as it should when used in the secrets file for a PSK. I have searched several mailing lists and it seems that this problem has been introduced by Openswan 2.3.0 and is known. I just wanted to point out that it is still alive and not yet fixed. I did not find any solution to it in the internet. The suggestion to add a newline did not work. Bug-Report 370 suggest nat-traversal but it is on and still it does not work.
The connection is directly between two devices m164 (192.168.6.164) and t165 (192.168.6.165). When trying to bring it up I get the error message (on t165):
pluto: "IPsecConn-1" 192.168.6.164 #2: Can't authenticate: no preshared key found for `192.168.6.165' and `%any'. Attribute OAKLEY_AUTHENTICATION_METHOD
Configuration on m164:
192.168.6.164 192.168.6.165 : PSK "qweqwe"
Configuration on t165:
*** ipsec.secrets ***
192.168.6.165 %any: PSK "qweqwe"
: PSK "qweqwe"
as secrets on t165 works fine though.
Thanks and best regards,
GMX FreeMail: 1 GB Postfach, 5 E-Mail-Adressen, 10 Free SMS.
Alle Infos und kostenlose Anmeldung: http://www.gmx.net/de/go/freemail
More information about the Users