[Openswan Users] rightsubnet parameter question
Paul Wouters
paul at xelerance.com
Thu Nov 5 05:33:46 EST 2009
On Thu, 5 Nov 2009, Ronald wrote:
> conn net-net
>
> left = 1.1.1.1
> leftsubnet = 192.168.10.0/29
> leftnexthop = %defaultroute
>
> right = 2.2.2.2
> rightsubnet = 208.77.116.46/32
> rightnexthop = %defaultroute
>
> type = tunnel
>
> ike = 3des-md5
> esp = 3des-md5
> auth = esp
> pfs = no
> auto = start
>
> my problem is the cisco side is having an error in quick mode the tunnel on peer 1.1.1.1
> in openswan my error is something like this
>
> Nov 5 08:16:08 openswan-gw pluto[31064]: "net-net" #1: ignoring
>
> informational payload, type NO_PROPOSAL_CHOSEN
Ask the cisco administrator what the ike, esp and pfs settings need to be. And make sure
they do not expect xauth.
If you are using preshared key, then add authby=secret to your connection.
Paul
More information about the Users
mailing list