[Openswan Users] Still server crash
Paul Wouters
paul at xelerance.com
Fri Apr 2 17:57:22 EDT 2010
On Fri, 2 Apr 2010, Dennis van der Meer wrote:
> # basic configuration
> config setup
> uniqueids=yes
> nat_traversal=no
>
> virtual_private=%v4:10.0.0.0/16,%v4:172.16.0.0/12,%v4:192.168.0.0/16,%v4
> :!192.168.2.0/24,%v4:!10.0.2.0/24,%v4:!10.0.7.0/24,%v4:!192.168.100.0/24
> protostack=klips
> plutodebug="none"
> klipsdebug="none"
That blank line will cause trouble
> conn RoadWarrior
> auto=add
> left=192.168.2.63
> leftsourceip=10.0.15.1
> leftsubnet=10.0.15.0/24
> leftprotoport=17/1701
>
> right=%any
> rightprotoport=17/%any
> rightsubnet=vhost:%no,%priv
> pfs=no
> authby=secret
> type=tunnel
> keyingtries=5
> keyexchange=ike
And so will that blanc line.
>
> ipsec.secrets:
>
> %any %any : PSK
> "716ce954e871ce7eb193c78624387dbed03cb25c6430adc672cf072d79b1c66c"
You will have to change this secret in production
> Apr 2 16:28:24 telemetry pluto[3192]: NAT-Traversal support
> [disabled]
This is due to the blanc line.
Paul
More information about the Users
mailing list