[ previous ] [ next ] [ threads ]
 
 From:  "Kevin Droz" <drozk at moeller dot com>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Monowall and Freeswan
 Date:  Thu, 3 Feb 2005 12:30:15 -0500 
Hello Everyone,

I'm trying to make a IPSEC conection with a freeswan server. I used the
setup in the Documentation and getting an error. Here is my config file and
error

Error: Can't authenticate: no preshared key found for `X.X.X.X' and
`X.X.X.X'.  Attribute OAKLEY_AUTHENTICATION_METHOD
Feb  3 12:27:52 router2 pluto[5243]: "vpn1" #11: no acceptable Oakley
Transform



Config File:

config setup
       interfaces=%defaultroute
       klipsdebug=none
       plutodebug=none
       uniqueids=yes

conn %default
       keyingtries=0
       #compress=yes

conn block
   auto=ignore

conn private
   auto=ignore

conn private-or-clear
   auto=ignore

conn clear-or-private
   auto=ignore

conn clear
   auto=ignore

conn packetdefault
   auto=ignore

conn vpn1
       type=tunnel
       left=ip.add.of.m0n0
       leftsubnet=m0n0.side.subnet/24
       leftnexthop=%defaultroute
       right=ip.add.of.freeswan
       rightsubnet=freeswan.side.subnet/24
       rightnexthop=%defaultroute
       authby=secret
       auth=esp
       esp=3des-md5-96
       pfs=no
       auto=start



Mono Config

m0n0-side:
Phase1
Neg. mode = main
Enc. Alg = 3DES
Hash Alg = MD5
DH key grp = 5

Phase2
Protocol = ESP
Uncheck all Enc. Alg. Except 3des
Hash alg = md5
PFS key group = off