[Openswan Users] Remote End Subnet

Khan, Hammad Aslam raohammad at gmail.com
Sat Mar 1 05:34:56 EST 2008


Hi Paul,
I meant; these folders have files all required but none of these files have
my any of IP's that are playing role in connection.
Is it something that is missing requires to be added here?

Regards,
Hammad

On Sat, Mar 1, 2008 at 12:39 AM, Khan, Hammad Aslam <raohammad at gmail.com>
wrote:

> I am not quite sure even after looking at OpenSwan logs; but as far as
> Policy is concerned - I dont have any policies folder like as mentioned in
> BARF logs of Openswan;;
>
> /etc/ipsec.d/policies/
>
> Attached are logs; please help me to resolve this.
>
> Regards,
> Hammad
>
>
> On Fri, Feb 29, 2008 at 3:50 PM, Paul Wouters <paul at xelerance.com> wrote:
>
> > On Fri, 29 Feb 2008, Khan, Hammad Aslam wrote:
> >
> > > 1)
> > > If we want to access only one private host on remote end instead of
> > whole
> > > subnet
> > > will it be OK to write;
> > >
> > > rightsubnet=10.10.10.10/32 ?
> > >
> > > likewise for left; I want to allow access only for one host
> > > leftsubnet=11.11.11.11/32
> >
> > That should work.
> >
> > > 2)
> > > My connection's ISAKMP tunnel successfully completes but sticks on
> > > STATE_QUICK_I1 with remote end error message; Policy Not Defined for
> > src:
> > > 11.11.11.11 and destination 10.10.10.10
> >
> > What do the openswan logs say?
> >
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080301/76ba96d2/attachment.html 


More information about the Users mailing list