[Openswan Users] Openswan + Fortigate shared key problem

Marcin J. Kowalczyk marcin.kowalczyk at ccig.pl
Sun Sep 28 09:05:35 EDT 2008


 I'm trying to setup connection between Openswan 2.4.12 and fortigate 
VPN.  Only information I received from person who administrates Forti is:

"Remote Peer:  81.xx.xx.66

Pre shared key:

esp-3des esp-md5-hmac

authentication pre-share
encryption 3des
hash md5
group 2
lifetime 86400 "

I've tried google for solution, but I could not find any working (for my 
enviroment) solution. My /etc/ipsec.d/forti.config is

conn forti
        type=           tunnel
        authby=         secret
        left=           78.xx.xx.20
        leftnexthop=    %defaultroute
        right=          81.xx.xx.66
        esp=            esp-md5-hmac
        ike=            3des-md5-hmac
        keyexchange=    ike
        pfs=            no
        auto=           start
#Disable Opportunistic Encryption
include /etc/ipsec.d/examples/no_oe.conf

in /etc/ipsec.d/forti.secret I've put password I received from VPN 
admin. Can anybody help me with configuration of this connection?

Best Regards,

More information about the Users mailing list