-----BEGIN PGP SIGNED MESSAGE-----
On Wed, 29 May 2002, Martin Lang wrote:
> conn head-branch
> leftid=@kontor.domain.de
> leftrsasigkey=0sAQO4lII.................
> left=192.168.1.9
> leftnexthop=192.168.1.2
> #leftsubnet=192.168.1.0/24
> #right
> rightid=@th-serv2.domain.de
> rightrsasigkey=0sAQNo........
> right=217.3.196.107
> rightnexthop=192.168.1.9
> #rightsubnet=192.168.1.0/24
> auto=add
> and
> vpn server 2:
>
> conn head-branch
> leftid=@thiesen.domain.de
> leftrsasigkey=0sAQO4......
> left=217.199.42.76
> leftnexthop=217.5.106.33
> leftsubnet=217.159.52.0/24
> #right
> rightid=@th-serv2.domain.de
> rightrsasigkey=0sAQNog......
> right=217.3.196.107
> rightnexthop=217.5.106.33
> rightsubnet=217.3.196.0/24
> auto=add
The description you provided of your network layout does not seem
consistent with these connections; as well, they certainly aren't
consistent with each other! For this simple situation to work, you need
connection properly defined on both ends; please review doc/config.html.
Secondly, you have to ensure the firewall that lies on LAN1 is configured
to allow port 500, and protocols 50 (and 51). Take a look at
doc/firewall.html.
Sam Sgro
sam_at_freeswan.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.
iQCVAwUBPPUZ7kOSC4btEQUtAQETuAQA3GlARgtvLYgu0v3Sl2IfVraoXex86SP2
VneOttzO7BLUFtVmw10h2Z6GASEMY6syMGQlMqBoDfqDuBOYzzHyuCpSHCUp+1X4
oy2GZfqmFz52Hawb1G/m3C9ydNchttLbgXguHtQaQt/Pw2uaGzAobXBYGuaRhPqs
PO5NZ0dcXb0=
=RzYX
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:20:08 CEST