[Openswan Users] help with ipsec + zywall

Wed Jun 10 02:29:33 EDT 2009

Hi Reza.

There is nothing wrong in config, usualy its compatibility issue, and some 
routers can not persist a connection
like this Zywall is a Zyxell model u told. I was facing the same issue usin 
with Mikrotik Router OS, usualy routers
have some Lifetime config settings that you have to chek and make sure its 
either disabled or set to the max to
keep the connection alive. Also try changing on IPsec 'auto=start'

Faizan Syed
Adhoc Technologies

----- Original Message ----- 
From: reza
To: users at openswan.org
Sent: Tuesday, June 09, 2009 8:51 PM
Subject: [Openswan Users] help with ipsec + zywall

Hi,

Forgive me for my bad english. I'm a french people.

I'm trying to configure openswan with a zywall router using an ath by 
rsasig.

I can get workinf the tunnel, but periodically (randomly), the tunnel 
crashes.
When I verify the status of this vpn connection, I can see that the tunnel 
is established,
but there is no traffic. I have to down my connection, hangup the zywall 
side (bouton hangup in admin panel),
and without any up, the connection is negiciated and established, and all 
traffic work.

My conf :
conn techvar
    # materiel : zywall 2 plus
    #local
    left=publicipoftheopenswanbox
    leftsubnet=192.168.2.0/24
    leftid=xxxxxxxxxx
    authby=secret
    pfs=yes
    auth=esp
    aggrmode=no
    disablearrivalcheck=no
    esp=3des-md5-96
    # remote
    right=publiipofthezywall
    rightsubnet=192.168.1.0/24
    rightid=xxxxxxx
    auto=add

Any idea to solve the problem ?

Thanks in advance for your help.

_______________________________________________
Users at openswan.org
http://lists.openswan.org/mailman/listinfo/users
Building and Integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155 