On Fri, 30 Mar 2007, Alok Thaker wrote:
> Well as paul said i need to give
left=%defaultroute and
> right=%any but I am a little bit confused over here.I
want an ipsec.conf for
> roadwarrior connecton using PSK not certificates and I
am establishing IPSec
> vpn connectivity using Windows XP and Linux VPN
Openswan server.
I did not say that. Do not use left=%defaultroute and
right=%any on the
server. I said on a CLIENT you use left=%defaultroute. And
on the SERVER
you use right=%any.
> So plz tell me what should i write in ipsec.conf for
having an roadwarrior
> connection so that any users can connect to the my
openswan ipsec server
> from anywhere.
Are you using a windows ipsec client? If not, then you must
use l2tp,
for which example configs are in /etc/ipsec.d/exampes/ and
you will also
need to configure and run xl2tpd.
If you use an ipsec client on windows, it all depends on
what you want
to do, but for starters you want left=yourpublicip and
right=%any
for PSK you want authby=secret and add the secret in
/etc/ipsec.secrets
Other examples for configs can be found in
openswan-2.x.y/testing/pluto/
Paul
_______________________________________________
Users openswan.org
http
://lists.openswan.org/mailman/listinfo/users
Building and Integrating Virtual Private Networks with
Openswan:
http://www.amazon.com/gp/product/1904811
256/104-3099591-2946327?n=283155
|
