Dear all, I am having a ball of a time configuring ipsec.conf against our friendly Fortigate VPN box.
I think the model is some very old one, perhaps 50B or something. Now some other Linux based commercial VPN is able to talk to it as Fortigate also is from the same parent. So is every other boy out there. But I want OpenBSD to talk to it. I am sure with a lot of hard work I could possibly sort this out but some wisdom from you is good, particularly for the archives and google. If it matters in any manner at all, my ipsec.conf is #ike passive esp from $localnet to $remotenet peer $remoteip \ main auth hmac-sha1 enc 3des group modp1536 \ quick auth hmac-sha1 enc 3des group none psk <removed> Do you want isakmpd.conf too? I got one from some site. Here is the phase 1 auth reject message I get. 201238.986501 Default attribute_unacceptable: AUTHENTICATION_METHOD: got PRE_SHARED, expected RSA_SIG 201238.986523 Default attribute_unacceptable: AUTHENTICATION_METHOD: got PRE_SHARED, expected RSA_SIG 201238.986547 Default attribute_unacceptable: AUTHENTICATION_METHOD: got PRE_SHARED, expected RSA_SIG 201238.986557 Default messag Any pointers are much appreciated. Thanks to all. -Girish -- G3 Tech Networking appliance company web: http://g3tech.in mail: [email protected]
