On 21.03.2017 13:18, Jordi Casanellas wrote: > My vpn is working only ping in cisco to strongswan, ping strongwsan to cisco > not working. > conn evindustria > leftsourceip=10.200.1.1 That's invalid. Remove leftsourceip.
> esp=3des-sha1-modp1024 > ike=3des-sha1-modp1024 Bad cipher suite. Upgrade that. > # This allows the VPN to come up automatically when openswan starts > auto=add That's just wrong. "auto=add" only adds the configuration to charon, but doesn't do anything else with it. It's neither initiated, nor used to install trap policies. Configure "auto=route". > Only the VPN works by pinging from the Cisco ASA to Strongwsan That's because you configured auto=add. Please stop sending HTML formatted emails. Send plaintext instead. It's unnecessarily difficult to handle it. -- Mit freundlichen Grüßen/Kind Regards, Noel Kuntze GPG Key ID: 0x63EC6658 Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
