[Openswan Users] natted ipsec/l2tp
jb at scorpion77.cjb.net
Wed Aug 15 13:20:15 EDT 2012
That doesn't seem to work I get:
"We cannot identify ourselves with either end of this connection"
Even if I put this in my .secrets file:
<my external inet ip> %any: PSK "<my PSK>"
met vriendelijke groet,
j.beerstra at upcmail.nl
Willie Gillespie schreef op di 14-08-2012 om 18:35 [-0600]:
> On 8/14/2012 11:26 AM, Jeroen Beerstra wrote:
> > The problem is that with leftsubnet=[my cable inet ip]/32 Ipsec works
> > but the wrong xfrm rules are added. That is [my cable inet ip] -> [our
> > work inet ip] and vice versa and not [my internal lan ip] -> [our work
> > inet ip]. So xl2tpd traffic ends up being send unencrypted to our work
> > ip and not via the ipsec tunnel.
> Try left=[your cable inet ip]
> and leftsubnet=[your internal lan ip]/32
> Users at lists.openswan.org
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
More information about the Users