hi there , i m trying to translate a working
configuration of openswan (to a fortigate) into a
valid KVPNC profile.
unfortunately , kvpnc doesnt seem to keep important
parts of the file , like using main mode ,and basing
matching of the PSK in phase 1 on a local id based on
given name
my working ipsec file is the following,used with
openswan
conn XXX
type=transport
left=192.168.7.4
[EMAIL PROTECTED]
leftsourceip=192.168.4.4
leftxauthclient=yes
right=V.X.Y.Z
rightsubnet=192.168.9.0/24
rightxauthserver=yes
[EMAIL PROTECTED]
keyingtries=0
pfs=yes
pfsgroup=modp1536
aggrmode=yes
auto=add
auth=esp
esp=3des-sha1
ike=3des-md5
authby=secret
with the following ipsec.secrets
@BBB @BBB : "AAAAAA"
also ,when connecting ,i use the following command
ipsec whack --name XXX --xauthname bobby --xauthpass
ewing --initiate
at the moment, kvpnc is configured as a
l2tpd(openswan) profile,xauth config was put but
assigning aggressive mode and some additional
parameters like pfs simply dont save .....
any chance to translate that in something kvpnc can
launch
Karim BOUMEDHEL
Guitarist
Linux addict
Movil: 0034610643074
Mail:[EMAIL PROTECTED]
______________________________________________
Enviado desde Correo Yahoo! La bandeja de entrada más inteligente.
_______________________________________________
Kvpnc-user mailing list
[email protected]
https://mail.gna.org/listinfo/kvpnc-user
