[Openswan Users] Ubuntu - Cisco help please...update.

openwan wan openwanw365 at gmail.com
Tue Jan 26 18:34:23 EST 2010 

Hello,
I send the following message and i realized my mistakes and got it all
corrected and now it looks like my tunnel is working. I could reply to my
original message, dont know how to so I am sending it here. Now my new
config file that works looks like the following....

type=           tunnel

authby=         secret


 left=           69.15.184.10

leftsubnet=     192.168.1.100/ <http://192.168.1.0/24>32

leftnexthop=    %defaultroute


 right=          61.15.184.10

rightsubnet=    172.33.15.3/2 <http://172.33.15.0/24>32

rightnexthop=   %defaultroute

esp=            3des-md5

 keyexchange=    ike

pfs=            no

 auto=           start

This tunnel gets established when I see the pluto logs it says it
is established. The CISCO admin says it is. When I look at the route entries
on me machine I don't see any new routes added. I am not able to ping the
other side either. So, with this config what routes should I be seeing? On
my gateway, what route should I add so the internet traffic goes to internet
and not to the tunnel?
Thanks.

Thanks.
---------- Forwarded message ----------
From: openwan wan <openwanw365 at gmail.com>
Date: Thu, Jan 21, 2010 at 2:20 PM
Subject: Ubuntu - Cisco help please...
To: users at openswan.org


Hello everybody,
I am asking for help after spending two days to get this working. I want to
connect from my ubuntu machine having a public ip address to couple of pcs
inside a corporation. These PCs have 172.x.x.x addresses. I dont have any
subnet behind my public machine that is running OpenSwan, that is the
machine that will do the talking to the PCS and also runs the OpenSwan. Is
it possible at all? The PCs are protected by a Cisco PIX. here is my
ipsec.conf file.

type=           tunnel

authby=         secret

#RRT

 left=           xx.xx.xx.xx

#leftsubnet=     192.168.1.0/24

leftnexthop=    %defaultroute

 #SAA

 right=          yy.yy.yy.yy

rightsubnet=    172.33.15.0/24

rightnexthop=   %defaultroute

esp=            3des-md5

 keyexchange=    ike

pfs=            no

 auto=           start

The tunnel itself is nto getting established, I keep getting Pluto error
NO_PROPOSAL accepted. Any help will be appreciated. Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20100126/6369809f/attachment.html

More information about the Users mailing list