[Openswan Users] multiple user behind same nat
Paul Wouters
paul at xelerance.com
Mon Aug 22 09:40:45 EDT 2011
On Sat, 20 Aug 2011, Osvaldo Alvarez Pozo wrote:
> I installed klips with apt-get install openswan-modules-dkms.
That does not neccessarilly mean you have an SAref patched kernel btw.
You can check for ubuntu kernels at ftp://ftp.openswan.org/openswan/binaries/ubuntu/
> initial Main Mode message received on 210.84.53.49:500 but no
> connection has been authorized with policy=PSK
Do you have:
interfaces="%defaultroute"
protostack=mast
Paul
> thanks
>
> 2011/8/20 Osvaldo Alvarez Pozo <nebano at gmail.com>:
>> Hi.
>> Thanks
>> KLIPS?, how can I have this on my system?
>> I have debian squeeze and there is no KLIPS.
>> I installed openswan with apt-get install openswan.
>>
>> thanks
>>
>> 2011/8/20 Paul Wouters <paul at xelerance.com>:
>>> On Fri, 19 Aug 2011, Osvaldo Alvarez Pozo wrote:
>>>
>>>> Hi all
>>>> I have openswan +xl2tp for allowing i2TP/ipsec clients connetions.
>>>> This works but when one user behind NAT get connected the seconf can
>>>> not connect. for instance in windows 7 we get error 789.
>>>>
>>>> have anione got this working?
>>>
>>> You need to use KLIPS with SAref. Then use
>>>
>>> protostack=mast
>>>
>>> and in your conn:
>>>
>>> overlapip=yes
>>>
>>> and in xl2tpd.conf:
>>>
>>> ipsec saref = yes
>>>
>>>
>>> Paul
>>>
>>
>
More information about the Users
mailing list