Contivity VPN woes
Kenneth E. Lussier
ken.lussier at zuken.com
Thu Nov 21 09:36:51 EST 2002
On Thu, 2002-11-21 at 08:58, bscott at ntisys.com wrote:
> > Someone forgot to comment out the "right/leftsubnet" maybe?
>
> The other peer isn't running FreeS/WAN, it's running SafeNet's SoftRemote
> for Windows. The configuration checks out, and works just fine if I remove
> the NAT box. This is a dynamic, "road warrior" config -- FreeS/WAN gateway
> on one end, %any for the other end (no subnet). The error I'm seeing is
> that FreeS/WAN is thinking the connection is a gateway, with the public IP
> address of the router being the gateway address, and the private IP address
> of the Windows box being behind it -- which is, in a sense, correct, I
> guess. But since there is no subnet configured in FreeS/WAN, Pluto kicks
> out the IKE attempt as not matching any configured connection. I suspect I
> need to tweak FreeS/WAN's config slightly, or maybe add a patch. Like I
> said, I haven't had a chance to really look into it yet.
These links should give you a hand:
http://lists.freeswan.org/pipermail/users/2001-November/005061.html
http://jixen.tripod.com/#Rw-IRE-to-Fwan
http://www.redbaronconsulting.com/freeswan/fswansafenet.pdf
C-Ya,
Kenny
--
----------------------------------------------------------------------------
"Tact is just *not* saying true stuff" -- Cordelia Chase
Kenneth E. Lussier
Sr. Systems Administrator
Zuken, USA
PGP KeyID CB254DD0
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xCB254DD0
More information about the gnhlug-discuss
mailing list