Hi all,
I have been trying to connect to a bsd firewall using isakmpd,
the problem is that this firewall is using aggressive mode
with phase1 3des-shar1 and phase2 3des-shar1. I have installed
super-freeswan the problem is I still can't connected.
in my messages log file I have found a few lines that seem to
cause a problem.
ipsec__plutorun: 003 esp string error: hash_alg not found,
enc_alg="3des", auth_alg="shar1", modp=""
ipsec__plutorun: ...could not add conn "openbsd"
ipsec__plutorun: 003 "openbsd" #1: no IKE algorithms for this connection
(check ike algorithm string)
ipsec__plutorun: 003 "openbsd" #1: empty ISAKMP SA proposal to send (no
algorithms for ike selection?)
ipsec++plutorun: ...could not start conn "openbsd"
my conf file looks like this
conn openbsd
authby=secret
esp=3des-shar1
ike=3des-shar1
left=theirip
leftsubnet=192.168.126.0/24
leftnexthop=%defaultroute
right=myip
rightsubnet=mysubnet
rightnexthop=myrouter
auto=start
I have compiled the kernel with ipsec and enabled 3des and shar1.
Otherwise does anyone know where I could get ISAKMPD for 2.4 kernels?
--
Regards,
Kevin Saenz
Spinaweb
I.T consultants
Ph: 02 4620 5130
Fax: 02 4625 9243
Mobile: 0418455661
Web: http://www.spinaweb.com.au
--
SLUG - Sydney Linux User's Group - http://slug.org.au/
More Info: http://lists.slug.org.au/listinfo/slug
