[Openswan Users] setting up openswan with fortigate
Paul Wouters
paul at xelerance.com
Thu Jan 24 15:15:34 EST 2008
On Wed, 23 Jan 2008, Julien Garnier wrote:
> I'm triyng to setup connection between my linux sever and fortigate at work.
>
> I've first set up fortigate as this :
> Firewall : new address :
> julien_maison 192.168.10.1/255.255.255.0
> conn magasin
> left=82.238.xxx.xxx
> leftsubnet=192.168.10.0/24
> leftid=@home
> right=193.251.xxx.xxx
> rightsubnet=10.52.158.0/24
> /usr/sbin/ipsec auto --up magasin
> 022 "magasin": We cannot identify ourselves with either end of this
> connection.
Looks like your end is behind NAT, and does not have the 82.* or the
193.* IP address, but probably a 10.* or 192.168.* address. You must
put in the REAL ip address on the box for your local end. If you are
within 192.168.10.0/24, then you might have a problem with tunneling
that (since then the "gateway" would technically be within the subnet)
Paul
More information about the Users
mailing list