[Openswan Users] CentOS host-to-host Ipsec VPN

Paul Wouters paul at xelerance.com
Tue Jul 14 18:50:42 EDT 2009

On Mon, 13 Jul 2009, Marko Mernik wrote:

> conn CentOSGWh-CentOSSIP
>        type=tunnel
>        left= <MY WAN IP>
>        leftsourceip= <MY LAN GW IP>

that's wrong. leftsourceip= is used to specify your internal ip
in a subnet-subnet connection.

> Host A
> [root at router quickstarts]#  ipsec auto --up CentOSGWh-CentOSSIP
> 117 "CentOSGWh-CentOSSIP" #4: STATE_QUICK_I1: initiate
> 004 "CentOSGWh-CentOSSIP" #4: STATE_QUICK_I2: sent QI2, IPsec SA
> established tunnel mode {ESP=>0x7c711da1 <0x705e3569
> xfrm=AES_128-HMAC_SHA1 NATOA=none NATD=none DPD=none}

Looks good.

Firewall rule?


More information about the Users mailing list