From: Sam Sgro (sam_at_freeswan.org)
Date: Mon Jan 13 2003 - 19:45:34 CET
-----BEGIN PGP SIGNED MESSAGE-----
On Sat, 11 Jan 2003, Bjarke Bruun wrote:
Send your replies to sam_at_spidersilk.net, as our freeswan.org mail is having
problems.
1) You have specified in the client's connection to use the ip matching
"eth1:1" on the gateway; however, you have bound no ipsecN interface to that
interface! That is likely why you are getting the kernel messages on the
client.
Either use eth1's IP on your client - currently being used with
"interfaces=%defaultroute", or bind a new interface via
interfaces="ipsec0:eth1:1"
Don't forget to set your "leftnexthop" parameter manually in your %default
connection. Use the appropriate IP in the "road" connection.
2) You have "authby=secret" in your %default connection, and you are using
RSA sigs as authentication. Set "authby=rsasig" somewhere appropriate..
3) All "id" parameters need to be prefixed by a "@" if you wish them to be
used properly. On the gw, you just have "rightid=linux.hhknet.dk" - set
rightid=@linux.hhknet.dk, justa s you do on the client.
- --
Sam Sgro
sam_at_freeswan.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.
iQCVAwUBPiMJUUOSC4btEQUtAQHFvwQAvuZ+HypkEKg+A1TLLP+H5wYPTnsE9pUA
nPyq0cEWpBT7Y4INUeAcZH1cZDXrDbAt9eVbDonp2YYz9E1NX8ryNjw0RXpFzI3z
oRQ6mQoML/uzPaQRicyqIf78600mjM9HYnc7EFNg76P6wvq/uBu1LOKZva11eP6z
i9VInh3OTaw=
=MOzH
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Tue Jan 14 2003 - 05:21:14 CET