[Openswan Users] Connecting an unknown VPN Gateway
Sebastian Ries
Sebastian.Ries at dtnet.de
Fri Jan 22 08:39:21 EST 2010
Hi there
I'm not that familar with opneswan but I was told to connect to an
unknown gateway...
(I do not know which system it is running)
All I got is the Configuration needed:
Phase 1:
Operation mode: Main mode
Encryption: 3DES
Authentication: SHA
Group: 1024Bit
PSK
Phase2:
Encryption: 3DES
Authentication: SHA
PFS: enabled
Group: 1024Bit
My Problem is that I can not manage to translate this into a connetction
in ipsec.conf :-/
conn telent-to-infinis
left=<my-IP>
leftsubnet=<my-Network>
leftid=@<my-IP>
leftnexthop=<my-GW>
right=<remote-IP>
rightsubnet=<remote-Network>
rightid=@<remote-IP>
dpdtimeout=60
dpddelay=10
dpdaction=restart
ike=3des-sha1-1024
esp=3des-sha1-1024
pfs=yes
auto=start
Tunnel does not come up
ipsec auto --status tells
000 "<conn>": IKE algorithms wanted:
3DES_CBC(5)_000-SHA1(2)-MODP1536(5),
3DES_CBC(5)_000-SHA1(2)-MODP1024(2); flags=-strict
000 "<conn>": IKE algorithms found: 3DES_CBC(5)_192-SHA1(2)_1024-5,
3DES_CBC(5)_192-SHA1(2)_1024-2,
000 "<conn>": ESP algorithms wanted: 3DES(3)_000-SHA1(2);
flags=-strict
000 "conn": ESP algorithms loaded: 3DES(3)_192-SHA1(2)_1024
Do I get it right, that they cannot find an encryption they both want to
use?
Can anyone help me to set the connection parameters?
Regards
Sebastian Ries
--
------------------------------------------------------------
DT Netsolution GmbH - Talaeckerstr. 30 - D-70437 Stuttgart
Tel: +49-711-849910-36 Fax: +49-711-849910-936
WEB: http://www.dtnet.de/ email: Sebastian.Ries at dtnet.de
More information about the Users
mailing list