[Openswan Users] site 2 site vpn openswan with cisco asa 5500
Kelly Kloen
k.kloen at de-breul.nl
Thu Dec 2 04:38:42 EST 2010
Hi there,
I have a problem with getting a vpn connection working.
I have openswan and the other side has an cisco asa 5500
This is what i got from them :
Local peer ( our external ip ) : 77.61.201.201.18
Local network ( our local network ) : 192.168.5.0/24
Remote peer ( there external ip ) : 81.21.176.90
Remote network (there local network): 81.21.188.161/32
Ipsec phase 1
Proxy id :
vpn.swp.nl ( not requered
Pre shared key :
fakefakefakefake
Ike policy encryption/auth/dhgroup : 3DES /SHA / Group 2
Security association phase 1 : 86400 sec
Ike negotiation mode : main
Ipsec phase 2
Ipsec esp encryption/esp authe : 3DES /SHA
Security assosiation phase 2 : 28800 sec
Perfect forward secrecy (PFS ) : DH Group 2
What i have in the ipsec.conf
Conn nameconnection
Keyexchange=ike
Type=tunnel
Ike=3des-md5
Esp=3des-md5
Authby=secret
Keyingtries=0
Left=77.61.201.18
Leftsubnet=192.168.5.0/24
Leftnexthop=77.61.201.17
Right=81.21.176.90
Rightsubnet=81.21.188.161/32
Rightnexthop=%defaultroute
Compres=no
Auto=start
Spi=0x0
Pfs=no
And then this is what i get in the secure log :
www.de-breul.com/log.jpg
i can't get a connection...
where do i need to look at ?
gr kloenie
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20101202/1ff92992/attachment-0001.html
More information about the Users
mailing list