[Openswan Users] Ipsec configuration Lucent VPN Gateway with OpenSwan or others (Lucent IPSec Client 9.2.0 in Windows XP)
Michael H. Warfield
mhw at WittsEnd.com
Mon Feb 22 12:21:28 EST 2010
On Mon, 2010-02-22 at 11:56 -0500, Paul Wouters wrote:
> On Sun, 21 Feb 2010, Michael H. Warfield wrote:
> > Well, so much for THAT theory. If I set leftprotoport or rightprotoport
> > to ANYTHING, it won't load the conn and gives me no error in the logs
> > what so ever and the conn does not show up in ipsec auto --status at
> > all. I tried setting rightprotoport=17/500 and leftprotoport=17/500 and
> Nono. those options are for the traffic selectors on the inside of the
> tunnel, not the port of the outside layer. Eg this is to set the allowed
> protocol/port on the inside of the tunnel (often udp/1701 for L2TP connections)
Yeah, as I mentioned in a private message to you, I found the problem
there (I have to set both left and right to the same thing) and it
doesn't do what I was hoping to do in any case.
> > 17/4500 and even the example from the man page of 17/1701 for l2tp and
> > the connection just no longer appears. No error, no connection.
> > Sigh...
> What does ipsec auto --add yourname says? And on what version are you? Those
> options work fine for setting it for L2TP connections.
> Paul
Regards,
Mike
--
Michael H. Warfield (AI4NB) | (770) 985-6132 | mhw at WittsEnd.com
/\/\|=mhw=|\/\/ | (678) 463-0932 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0x674627FF | possible worlds. A pessimist is sure of it!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 482 bytes
Desc: This is a digitally signed message part
Url : http://lists.openswan.org/pipermail/users/attachments/20100222/a9be71e3/attachment.bin
More information about the Users
mailing list