[Openswan Users] Trying to get Openswan working Ubuntu to Cisco ASA 5510
Whit Blauvelt
whit at transpect.com
Wed Mar 10 09:46:47 EST 2010
On Wed, Mar 10, 2010 at 12:20:12AM -0500, Paul Wouters wrote:
> Try: ipsec auto --add cisco
> to find out why the conn did not load.
Think it not loading is only an occassional glitch, unrelated to other
problems.
> You should be okay with using esp= and ike= and not phase2= and phase2_algs.
Yeah, I know. But it turns out:
phase2=esp
phase2alg=3DES-SHA1
ike=3DES-SHA1
works connecting to the Cisco, while
esp=3DES-SHA1
ike=3DES-SHA1
fails. Most odd.
Best,
Whit
More information about the Users
mailing list