[strongSwan] need to find a host-host configuration for strongswan
Andreas Steffen
andreas.steffen at strongswan.org
Sun Aug 19 08:57:52 CEST 2012
You need the parameter
auto=add
because the default is auto=ignore which doesn't load the
connection definition. pluto doesn't support left=%any,
either defined an IP address or write
left=%defaultroute
For the initiator you have to give an IP address for right so
it can actively connect to the responder.
Regards
Andreas
On 08/18/2012 05:07 PM, ramakanth varala wrote:
> Hello all,
>
> Iam new to strongswan, i am trying to run strongswan in my target
> board and a RHEL6 machine connected to that .
>
> My aim is to run the strongswan VPN server on my target board with a
> host-host tunnel to my linux machine connected to that.
>
> There are lot of missing blocks for me.
>
> 1) When ever i try to run the ipsec ( either in my target board or in
> my linux machine) with some configurations like below
>
> ipsec.conf
> ========
>
> config setup
> #charonstart=no
> plutostart=yes
>
> conn %default
> left=%any
> right=%any
> authby=psk
>
>
> ipsec.secrets
> ===========
> %any %any : PSK "123456"
>
>
> i see that it does not show any thing when i type ipsec status
>
> 2) i oftenly see my ipsec.conf getting autogenerated and wiped out my
> confiugrations which ever i kept
>
> 3) Here my aim is to establish a simplist configuration to have VPN
> tunnel between my target board and my LINUX machine. if any body can
> sugget a simple configuration related to it , that would be really
> helpfull.
>
> iam running strongswan 4.6.1
>
> thanks
======================================================================
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
===========================================================[ITA-HSR]==
More information about the Users
mailing list