On Fri, Jun 15 2007 at 14:12, Sebastian Reitenbach wrote: > Hi all, Hi, > ike active esp from 192.168.27.0/24 to 192.168.0.0/16 \ > local 223.150.201.44 peer 34.123.15.43 \ > main auth hmac-md5 enc 3des group grp2 \ > quick auth hmac-md5 enc aes group modp1024 \ > psk "MySecretPassPhrase" There is a mistake in the main mode declaration. Your group cannot be set to "grp2". You should use modp1024 as in the quick mode statement.
>From ipsec.conf man mage : The following group types are permitted with the group keyword: Group Size modp768 768 modp1024 1024 modp1536 1536 modp2048 2048 modp3072 3072 modp4096 4096 modp6144 6144 modp8192 8192 none 0 [quick mode only] Regards, Claer