[Openswan Users] cannot respond to IPsec SA request because no connection is known for 220.127.116.11
Jacco de Leeuw
jacco2 at dds.nl
Tue Jan 29 18:07:02 EST 2008
Sebastian McDonagh wrote:
> One thing to note though is when i try to connect through a windows xp client
> l2tp not natted i get the same error message.
You are connecting to the server on 192.168.1.254, but left=%defaultroute is
at 18.104.22.168. So Openswan ignores this.
I suppose if you use:
it should work, but 192.168.1.0/24 is an internal network, presumably.
So you probably do want to use left=%defaultroute, but then you need to
connect with a client from an external location.
You might also need to exclude all your internal subnets in virtual_private=.
I would also suggest removing 'conn roadwarrior-l2tp' and tell people to
install the Windows 2000/XP NAT-T update, XP SP2 or Vista.
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
More information about the Users