Mailinglist Archive: opensuse-security (220 mails)

< Previous Next >
Re: [suse-security] FreeSwan <-> CheckPoint
  • From: "Thorsten Marquardt" <thom@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
  • Date: Wed, 5 Nov 2003 12:37:30 +0000 (MEST)
  • Message-id: <200311051237.MAA28534@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Hi,


Carl wrote:
>
> You don't have to change ipsec.conf
>
> Instead change ipsec.secrets
>
> Where you have a line that says...
>
> aaa.bbb.ccc.ddd www.xxx.yyy.zzz : PSK "Rumpelstielzchen"
>
[...]
>
> I can't see what you have in your ipsec.conf for the leftid value because
> you have written
>
> leftid=@....
>
> ...that's fine - no point in telling mailing list private details! Just use
> whatever you have there in your ipsec.secrets file instead of the external
> (internet) IP address of your Freeswan gateway. Make sure to include the @
> symbol as well!!
>
> So your ipsec.secrets file will look something like...
>
>
> # Must be same on both; generate on one and copy to the other.
> aaa.bbb.ccc.ddd @.... : PSK "Rumpelstielzchen"
>
>
> And that should be all that you need!
>


no that did not help. But maybe my problem is caused by some other FreeSwan tunnels
which use key authetication. I will disable this tunnel and try agagain later.


Thanks so far.

Thom

--

-------------------------------------------------------------------
bye bye (c) by Thom | Thorsten Marquardt
| EMail: THOM@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
| Member of the pzt project.
| http://kaupp.chemie.uni-oldenburg.de/pzt
-------------------------------------------------------------------



< Previous Next >
References