[Openswan Users] Trying to set up Openswan for the SonicWALL Network Security Appliance (NSA) 2400
László Monda
laci at monda.hu
Wed Aug 17 09:31:39 EDT 2011
Thanks a lot, Paul!
I've tried the recommended parameters but I got the same error as before.
Are you (or any of you) available for consultation? I don't have
access to the SonicWALL applicance myself but our sysadmin does.
We'd definitely like to use a roadwarrior setup with Openswan.
Thanks in advance.
On Wed, Aug 17, 2011 at 5:03 AM, Paul Wouters <paul at xelerance.com> wrote:
> On Tue, 16 Aug 2011, László Monda wrote:
>
>> conn sonicwall
>> type=tunnel
>> left=%defaultroute
>> leftid=@myvpn
>> right=vpn.company.com # obscured from public
>> rightsubnet=72.9.41.0/25
>> rightxauthserver=yes
>> rightid=@company
>> pfs=no
>> aggrmode=no
>> keyexchange=ike
>> auto=add
>> auth=esp
>> esp=3des-sha1
>> ike=3des-sha1-modp1024
>> authby=secret
>
> Add leftxauthclient=yes
> Add leftxauthusername=yourname
>
> in ipsec.secrets add:
>
> @yourname : XAUTH "password"
>
> You might also need:
>
> leftmodecfgclient=yes
> modecfgpull=yes
> modecfgdns1=1.2.3.4 (your remote dns server)
>
>
--
László Monda <http://monda.hu>
More information about the Users
mailing list