[Openswan Users] Trying to get Openswan working Ubuntu to Cisco ASA 5510

Paul Wouters paul at xelerance.com
Wed Mar 10 00:20:12 EST 2010


On Tue, 9 Mar 2010, Whit Blauvelt wrote:

> On Tue, Mar 09, 2010 at 02:57:23PM -0500, Avesh Agarwal wrote:
>
>> Could you please enable plutodebug=all and check "ipsec barf" what
>> kind of error it shows. Because that should not happen, and that may
>> be just because of some typo somewhere. Also dont forget to disable
>> plutodebug once you know the error.
>
> Appreciate your patience. I've had plutodebug=all set, but had forgotten
> about the "ipsec barf" command. Unfortunately that puts out so much stuff,

Try: ipsec auto --add cisco
to find out why the conn did not load.

You should be okay with using esp= and ike= and not phase2= and phase2_algs.

Paul


More information about the Users mailing list