[Openswan Users] cannot respond to IPsec SA request because no connection is known for 172.16.77.0/24===192.168.21.153...192.168.21.132===172.16.77.0/24

Jean-Michel Caricand jean-michel.caricand at lifc.univ-fcomte.fr
Wed May 14 02:49:36 EDT 2008


>  cat /etc/ipsec.secrets
> : PSK "PreSharedKey"
>
> Since I am using only PSK , I removed all other
> references  , I have the same in both the machines
>
> Thanks
>      Joseph John
>
>

I think it's not a PSK problem. Can you try with theses files ?

# GW ipsec.conf
version 2.0

config setup
       interfaces=%defaultroute
       nat_traversal=yes
       virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16

conn %default
       keyingtries=1
       compress=yes
       disablearrivalcheck=no
       authby=secret

conn road
       left=192.168.21.153
       leftsubnet=172.16.77.0/24
       right=%any
       rightid=@road
       auto=add

And perhaps :
# GW ipsec.secrets
192.168.21.153 %any : PSK "the passphrase"


# RW ipsec.conf
config setup
       interfaces=%defaultroute
       nat_traversal=yes

conn %default
       keyingtries=1
       compress=yes
       authby=secret

conn road
       left=%defaultroute
       leftsubnet=172.16.77.0/24
       leftid=@road
       right=192.168.21.153
       auto=add


- Jean-Michel




More information about the Users mailing list