[Openswan Users] roadwarrior with PSK
Paul Wouters
paul at xelerance.com
Tue Jun 9 11:53:12 EDT 2009
On Tue, 9 Jun 2009, Sir Thomas wrote:
> Hello Paul,
> i use X509 and when i try to connect the tunnel no up.
> the logs seem :
> Jun 9 09:50:47 pluto[27282]: "roadwarrior"[2] #1: STATE_MAIN_R3: sent
> MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
> cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp3072}
> Jun 9 09:50:47 pluto[27282]: "roadwarrior"[2] #1: received Delete SA
> payload: deleting ISAKMP State #1
the other end is hanging up. That must mean a mismatch in configuration,
or more likely just a misconfiguration of the other end.
> rightsubnetwithin=192.168.200.0/24
I recommend not using rightsubnetwithin. Use rightsubnet=vhost:%priv,%no
instead.
Paul
More information about the Users
mailing list