[Openswan Users] natted ipsec/l2tp

Jeroen Beerstra jb at scorpion77.cjb.net
Wed Aug 15 13:20:15 EDT 2012


That doesn't seem to work I get:

"We cannot identify ourselves with either end of this connection"

Even if I put this in my .secrets file:

<my external inet ip> %any: PSK "<my PSK>"

-- 
met vriendelijke groet,

Jeroen Beerstra
j.beerstra at upcmail.nl 

Willie Gillespie schreef op di 14-08-2012 om 18:35 [-0600]:
> On 8/14/2012 11:26 AM, Jeroen Beerstra wrote:
> > The problem is that with leftsubnet=[my cable inet ip]/32 Ipsec works
> > but the wrong xfrm rules are added. That is [my cable inet ip] -> [our
> > work inet ip] and vice versa and not [my internal lan ip] -> [our work
> > inet ip]. So xl2tpd traffic ends up being send unencrypted to our work
> > ip and not via the ipsec tunnel.
> 
> Try left=[your cable inet ip]
> and leftsubnet=[your internal lan ip]/32
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155



More information about the Users mailing list