Just set up an IPsec tunnel between Net1 and the server:
ipsec.conf of the Net1 gateway:
conn net1-server
left=IP of Net1 gateway
leftsubnet=Net1
leftcert=net1gwCert.pem
right=IP of server
rightid=ID of server
auto=start
ipsec.conf on the server
conn server-net1
Hi,
I tried to migrate our Openswan VPN (2.6.21) to Strongswan VPN (4.5.1) on our
CentOS 5 server. Openswan package is from official CentOS repository
(openswan-2.6.21-5.el5_6.4), Strongswan package have been built from this spec
file:
Hi, thanks, I managed to get similar system with the same software versions
but simplier setup where I can test it at will. At the beginning, I have
Openswan:
/etc/ipsec.conf:
version 2.0
config setup
plutodebug=parsing
conn %default
authby=secret
conn CONN
type=tunnel
Hi Andreas,
Thank you so much for your quick response. You were so right. The default
mtu size for in the interfaces on my peers was changed from 1500 to some
jumbo size (3000). This was causing the failure. It started to work again
once I changed it back to 1500 :). I guess this is one of the
The problem looks extremely strange. Could you send me the following
information:
ip -s xfrm policy
ip -x xfrm state
so that I can check if there are any packet hits or esp errors.
Andreas
On 05/10/2011 01:19 PM, Pavel Arnošt wrote:
Hi, thanks, I managed to get similar system with the same
It looks like that there are zeroes everywhere.
--
From: Andreas Steffen andreas.stef...@strongswan.org
Sent: Tuesday, May 10, 2011 2:50 PM
To: Pavel Arnošt pavel.arn...@valvera.cz
Cc: users@lists.strongswan.org
Subject: Re: [strongSwan] Migration