Hi List, I have installed freeswan on suse9.0 pro, 2.4.21-99-default . freeswan-1.99_0.9.34-27 freeswan.ca says that 2.4.2x+ works OK with freeswan1.99 The remote site uses cisco IPSec. Since I am very new to IPSec issues, sorry for the stupid questions below sad.gif The other site gave me these infos: PHASE1 (ISAKMP): encryption algorithm: 3DES hash algorithm: Secure Hash Standard authentication method: Pre-Shared Key Diffie-Hellman group: #2 (1024 bit) lifetime: 86400 seconds, no volume limit PHASE2 (IPSEC): encryption algorithm: 3DES hash algorithm: Secure Hash Standard Security association lifetime 4608000 kilobytes/3600 seconds No PFS and that all we need to do is exchange the pre-shared keys and IP addresses. First question is wheather it is possible at all to establish such a connection? I have been reading a pdf Implementing site-to-site ipsec between cisco router and freeswan and have done all the steps Iam attaching here the conf files and the logs: config setup # THIS SETTING MUST BE CORRECT or almost nothing will work; # %defaultroute is okay for most simple cases. interfaces="ipsec0=eth0" # Debug-logging controls: "none" for (almost) none, "all" for lots. klipsdebug=none plutodebug=none # Use auto= parameters in conn descriptions to control startup actions. plutoload=%search plutostart=%search # Close down old connection when new one using same ID shows up. uniqueids=yes ...... conn freeswan-cisco # Left security gateway, subnet behind it, next hop toward right. left=hidden IP address leftsubnet=10.1.10.0/24 (my LAN) leftnexthop= gateway that takes me to internet static IP) # Right security gateway, subnet behind it, next hop toward left. right= IP provided by the operator rightsubnet= rightnexthop= # To authorize this connection, but not actually start it, at startup, # uncomment this. auto=add authby=secret and add row at the end of ipsec.secrets: theirIP myIP : PSK "shared-key that were sent to me by the operator" /var/log/messages: Apr 29 14:57:14 linux pluto[4663]: "freeswan-cisco" #1: initiating Main Mode Apr 29 14:57:17 linux pluto[4663]: "freeswan-cisco" #1: Can't authenticate: no preshared key found for `10.1.10.176' and `195.26.157.18'. Attribute OAKLEY_A UTHENTICATION_METHOD Apr 29 14:57:17 linux pluto[4663]: "freeswan-cisco" #1: no acceptable Oakley Transform Apr 29 14:57:17 linux pluto[4663]: "freeswan-cisco" #1: sending notification NO_PROPOSAL_CHOSEN to 195.26.157.18:500 Apr 29 14:57:26 linux pluto[4663]: "freeswan-cisco" #1: Can't authenticate: no preshared key found for `10.1.10.176' and `195.26.157.18'. Attribute OAKLEY_A UTHENTICATION_METHOD Since I do not have where to read and where to search for these error messages please drop few lines anything, links, pdf's, whats the solution for errors ..... 10x to you all __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com