[Openswan Users] Openswan error messages
Paul Wouters
paul at xelerance.com
Tue Nov 3 14:50:35 EST 2009
On Tue, 3 Nov 2009, Philip Bellino wrote:
> Nov 3 10:55:01 ipsechost2 ipsec__plutorun: 022 "testIKE": we cannot identify
> ourselves with either end of this connection
You must specify a real IP address (or hostnames that resolves) of the
machine as either left or right
> config setup
>
> # Do not set debug options to debug configuration issues!
> # plutodebug / klipsdebug = "all", "none" or a combation from below:
> # "raw crypt parsing emitting control klips pfkey natt x509 dpd private"
> # eg:
> plutodebug="all”
Add:
interfaces="%defaultroute"
> conn testIKE
> left=10.0.0.1
> leftsubnet=15.0.0.0/8
> leftnexthop=%defaultroute
> right=10.0.0.10
> rightsubnet=125.1.0.0/16
> rightnexthop=%defaultroute
> type=tunnel
> auto=start
> authby=secret
Assuming your machine is either 10.0.0.1 or 10.0.0.10, it should work.
Paul
More information about the Users
mailing list