[Openswan Users] ipsec.conf setup help please.
Paul Wouters
paul at nohats.ca
Wed Nov 27 01:25:28 UTC 2013
On Tue, 26 Nov 2013, Sean Smith wrote:
> conn aliantVPN
> authby=secret
> auto=start
> type=tunnel
> #left=192.168.16.yy
> left=yyy.yyy.yyy.yyy
> leftnexthop=%defaultroute
> leftsubnet=192.168.16.0/24
> right=xxx.xxx.xxx.xxx
> rightsubnet=192.168.12.0/24
> rightnexthop=%defaultroute
> keylife=3600s
> #esp=
> #ike=AES128-sha1
> phase2=esp
> phase2alg=aes256-sha1
> However, I get 2 errors depending on small changes to the file.
>
> If I use the left IP as my public IP then I see "We cannot identify ourselves with the other end of this connection" errors in
> secure.log
>
> If I use the left IP as my internal openSwan computer IP then I see "No_PROPOSAL_CHOSEN" errors in secure.log
You want:
leftid=publicip
left=%defaultroute
Paul
--
Libreswan Developer - https://libreswan.org/
Red Hat Security - http://people.redhat.com/pwouters/
Personal Blog - https://nohats.ca/
More information about the Users
mailing list