Would anyone who has this working care to share their GB VPN config and the contents of their FreeS/WAN ipsec.conf file? I'm not having any luck with either auto or manual. :(
Hi,
This is from a pretty old configuration (about a year old), but it might work; this is for a gnatbox with an external IP of 80.85.139.10 and a protected network of 10.0.1.0/24. The FreeS/WAN host has 80.85.140.20 and the 192.168.0.0/24 subnet.
In /etc/ipsec.conf:
config setup
interfaces=%defaultroute
klipsdebug=none
plutodebug=none
plutoload=%search
plutostart=%search
uniqueids=yesconn vpn1
left=80.85.139.10
leftsubnet=10.0.1.0/24
leftnexthop=80.85.139.1
right=80.85.140.20
rightsubnet=192.168.0.0/24
rightnexthop=80.85.140.1
authby=secret
auto=startYou'll also need to define a (manual) key in /etc/ipsec.secrets: 80.85.139.10 80.85.140.20 "MySecretKey"
On the gnatbox side, use the following configuration:
phase 1: exchange mode main, encryption 3des, hash hmac-sha1, key group DH group 2
phase 2: encryption 3des, hash hmac-sha1, key group DH group 2
Use IKE for the key exchange, and the same pre-shared secret as the FreeS/WAN host.
Good luck!
Maarten Vink
------------------------------------------------------ To unsubscribe: [EMAIL PROTECTED] For additional commands: [EMAIL PROTECTED] Archive: http://archives.gnatbox.com/gb-users/
