[Openswan Users] Ipsec configuration Lucent VPN Gateway with OpenSwan or others (Lucent IPSec Client 9.2.0 in Windows XP)
Paul Wouters
paul at xelerance.com
Fri Feb 19 22:46:36 EST 2010
On Fri, 19 Feb 2010, Oscar Barrios wrote:
> conn Intranet
> ike=aes256-sha1-modp1024
> phase2alg=aes256-sha1
> aggrmode=no
> keyexchange=ike
> ikelifetime=24h
> auth=esp
> type=tunnel
> authby=secret
> left=192.168.2.100
> leftmodecfgclient=yes
> leftxauthclient=yes
> leftid="obarrios"
> right=62.xx.xx.xx
> rightmodecfgserver=yes
> rightxauthserver=yes
> modecfgpull=yes
> pfs=yes
> compress=yes
> auto=add
Usually, xauth is used with aggressive mode.
> 000 #2: "Intranet":500 STATE_MAIN_I1 (sent MI1, expecting MR1);
> EVENT_RETRANSMIT in 11s; nodpd; idle; import:admin initiate
Seeing that your first packet is rejected, your configuration likely
does not match what the other end is expecting.
Paul
More information about the Users
mailing list