[Openswan Users] Ipsec configuration Lucent VPN Gateway with OpenSwan or others (Lucent IPSec Client 9.2.0 in Windows XP)

Michael H. Warfield mhw at WittsEnd.com
Mon Feb 22 12:21:28 EST 2010

On Mon, 2010-02-22 at 11:56 -0500, Paul Wouters wrote: 
> On Sun, 21 Feb 2010, Michael H. Warfield wrote:

> > Well, so much for THAT theory.  If I set leftprotoport or rightprotoport
> > to ANYTHING, it won't load the conn and gives me no error in the logs
> > what so ever and the conn does not show up in ipsec auto --status at
> > all.  I tried setting rightprotoport=17/500 and leftprotoport=17/500 and

> Nono. those options are for the traffic selectors on the inside of the
> tunnel, not the port of the outside layer. Eg this is to set the allowed
> protocol/port on the inside of the tunnel (often udp/1701 for L2TP connections)

Yeah, as I mentioned in a private message to you, I found the problem
there (I have to set both left and right to the same thing) and it
doesn't do what I was hoping to do in any case.

> > 17/4500 and even the example from the man page of 17/1701 for l2tp and
> > the connection just no longer appears.  No error, no connection.
> > Sigh...

> What does ipsec auto --add yourname says? And on what version are you? Those
> options work fine for setting it for L2TP connections.

> Paul

Michael H. Warfield (AI4NB) | (770) 985-6132 |  mhw at WittsEnd.com
   /\/\|=mhw=|\/\/          | (678) 463-0932 |  http://www.wittsend.com/mhw/
   NIC whois: MHW9          | An optimist believes we live in the best of all
 PGP Key: 0x674627FF        | possible worlds.  A pessimist is sure of it!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 482 bytes
Desc: This is a digitally signed message part
Url : http://lists.openswan.org/pipermail/users/attachments/20100222/a9be71e3/attachment.bin 

More information about the Users mailing list