[Openswan Users] IPsec tunnel not up with Openswan
Poorva Kuber
poorvakuber at gmail.com
Tue Feb 14 16:35:19 EST 2017
Also, is it necessary that both the servers at both ends of the tunnel need
to be running openswan? I am trying to set up a connection with Cisco ASA
and their way of configuration will be different as compared to mine.
On Tue, Feb 14, 2017 at 4:25 PM, Poorva Kuber <poorvakuber at gmail.com> wrote:
> My Openswan package was overridden by libreswan 3.15. When i remove the
> aggressive mode, nothing changes. I get the same results that I am getting
> when it is on.
>
> On Tue, Feb 14, 2017 at 4:00 PM, Samir Hussain <shussain at xelerance.com>
> wrote:
>
>> Hello,
>> What version of Openswan are you using? What happens when you remove
>> aggrmode?
>>
>> Samir
>>
>> On 2017-02-14 03:49 PM, Poorva Kuber wrote:
>> > Hi,
>> > I am trying to setup a IPsec VPN tunnel using Openswan on CentOS 6.
>> > However, I cannot get the tunnel up. I am using a pre-shared key to do
>> > this. Here is my ipsec.conf file :
>> >
>> > conn A-B
>> > authby=secret
>> > auto=start
>> > ike=aes256-sha1;modp1024
>> > keyexchange=ike
>> > phase2alg=aes256-sha1;modp1024
>> > ikelifetime=24h
>> > keylife=1h
>> > #compress=no
>> > pfs=yes
>> > type=tunnel
>> > aggrmode=yes
>> > left=<my-private-ip>
>> > leftsubnet=<my-private-subnet>
>> > leftnexthop=%defaultroute
>> > right=<public-ip-of-remote-gateway>
>> > rightsubnet=<remote-subnet>
>> >
>> > Am i missing something in this? The tunnel will not go up. I also cannot
>> > see an ip route between the remote subnet and mine.
>> > Can you please help me troubleshoot this?
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20170214/7fabd588/attachment.html>
More information about the Users
mailing list