[Openswan Users] Having trouble with OpenSwan Configuration
Muenz, Michael
m.muenz at spam-fetish.org
Wed Feb 27 04:13:35 EST 2013
Am 26.02.2013 16:20, schrieb Steve Madel:
> I am trying to set up Openswanso that I can connect things such
> asfirewalls to conect to it. I am running into trouble with the
> following errors.
Which device is on the other end and do you control it?
>
> "test"[1] 192.168.11.5 #1: cannot respond to IPsec SA request because
> no connection is known for
> 0.0.0.0/0===10.2.3.4<10.2.3.4>[+S=C]...192.168.11.5[+S=C]===0.0.0.0/0
>
This doesn't fit with your config below
>
> When setting up the other end of the connection I do not necessarily
> know what subnet is going to be tunneled, and do not necessarily know
> how the device will identify itself. Here is a copy of my config.
> Any help is appreciated.
>
> conn test
> left=10.2.3.4
> leftsubnet=10.2.3.0/24
> leftnexthop=10.2.3.254
> leftid=10.2.3.4
> right=%any
> rightsubnet=vhost:%no,%priv
> auth=esp
> authby=secret
> pfs=no
> compress=yes
> auto=add
> #type=tunnel
>
Why no "type=tunnel"? Do you want a RW setup?
Michael
--
www.muenz-it.de
- Cisco, Linux, Networks
More information about the Users
mailing list