[Openswan Users] VPN newbie trying to do site to site with Cisco ASA
Nick Wiltshire
nick at customdesigns.ca
Wed Nov 30 18:48:23 EST 2011
On Wednesday 30 November 2011 15:48:53 Willie Gillespie wrote:
> On 11/30/2011 3:16 PM, Nick Wiltshire wrote:
> > I also forgot - here is the config without obscured ip addresses. This
> > is
> > driving me nuts!
> >
> > My public ip - 216.171.233.27
> > My gateway - 216.171.233.25
> >
> > conn cisco # Here is the Name of the VPN connection.
> >
> > type=tunnel
> > authby=secret
> > # Left security Linux, (Linux side)
> > left=216.171.233.27
> > leftsubnet=142.201.3.0/24 #Net address assigned to the
> > other side leftnexthop=216.171.233.25 #Real IP
> > Gateway
> > # Right security gateway, (ASA SIDE)
> > right=142.201.17.5 # ASA IP
> > rightsubnet=142.201.3.0/24 # Net address assigned to
> > the other side rightnexthop=216.171.233.25 #Real IP
> > Gateway
> > # Type of cryptogrphy used on the VPN Tunnel
> > ike=3des-sha1-modp1024
> > esp=3des-md5
> > keyexchange=ike
> > pfs=yes
> > auto=start
>
> Your leftsubnet and rightsubnet are the same? Also leftnexthop and
> rightnexthop?
This fixed it. I changed the file so many times I was blinded by my eyes
bleeding.
Thanks for the extra eyes, and sorry for the noise!
More information about the Users
mailing list