Hi, Carl wrote:
You don't have to change ipsec.conf
Instead change ipsec.secrets
Where you have a line that says...
aaa.bbb.ccc.ddd www.xxx.yyy.zzz : PSK "Rumpelstielzchen"
[...]
I can't see what you have in your ipsec.conf for the leftid value because you have written
leftid=@....
...that's fine - no point in telling mailing list private details! Just use whatever you have there in your ipsec.secrets file instead of the external (internet) IP address of your Freeswan gateway. Make sure to include the @ symbol as well!!
So your ipsec.secrets file will look something like...
# Must be same on both; generate on one and copy to the other. aaa.bbb.ccc.ddd @.... : PSK "Rumpelstielzchen"
And that should be all that you need!
no that did not help. But maybe my problem is caused by some other FreeSwan tunnels which use key authetication. I will disable this tunnel and try agagain later. Thanks so far. Thom -- ------------------------------------------------------------------- bye bye (c) by Thom | Thorsten Marquardt | EMail: THOM@kaupp.chemie.uni-oldenburg.de | Member of the pzt project. | http://kaupp.chemie.uni-oldenburg.de/pzt -------------------------------------------------------------------