[Openswan Users] Trying to set up Openswan for the SonicWALL Network Security Appliance (NSA) 2400

László Monda laci at monda.hu
Wed Aug 17 09:31:39 EDT 2011


Thanks a lot, Paul!

I've tried the recommended parameters but I got the same error as before.

Are you (or any of you) available for consultation?  I don't have
access to the SonicWALL applicance myself but our sysadmin does.

We'd definitely like to use a roadwarrior setup with Openswan.

Thanks in advance.

On Wed, Aug 17, 2011 at 5:03 AM, Paul Wouters <paul at xelerance.com> wrote:
> On Tue, 16 Aug 2011, László Monda wrote:
>
>> conn sonicwall
>>   type=tunnel
>>   left=%defaultroute
>>   leftid=@myvpn
>>   right=vpn.company.com  # obscured from public
>>   rightsubnet=72.9.41.0/25
>>   rightxauthserver=yes
>>   rightid=@company
>>   pfs=no
>>   aggrmode=no
>>   keyexchange=ike
>>   auto=add
>>   auth=esp
>>   esp=3des-sha1
>>   ike=3des-sha1-modp1024
>>   authby=secret
>
> Add leftxauthclient=yes
> Add leftxauthusername=yourname
>
> in ipsec.secrets add:
>
> @yourname : XAUTH "password"
>
> You might also need:
>
> leftmodecfgclient=yes
> modecfgpull=yes
> modecfgdns1=1.2.3.4 (your remote dns server)
>
>



-- 
László Monda <http://monda.hu>


More information about the Users mailing list