| 1 |
Mick <michaelkintzios@×××××.com> writes: |
| 2 |
|
| 3 |
> Any progress with this guys? I am also trying to get something running |
| 4 |
> between a router and my laptop (using kvnc) but I am failing with this error: |
| 5 |
|
| 6 |
Here are some samples. |
| 7 |
|
| 8 |
/etc/racoon/racoon.conf |
| 9 |
path pre_shared_key "/etc/racoon/psk.txt"; |
| 10 |
|
| 11 |
remote anonymous |
| 12 |
{ |
| 13 |
exchange_mode main; |
| 14 |
proposal { |
| 15 |
encryption_algorithm aes; |
| 16 |
hash_algorithm sha1; |
| 17 |
lifetime time 24 hour; |
| 18 |
dh_group 2; |
| 19 |
authentication_method pre_shared_key; |
| 20 |
} |
| 21 |
} |
| 22 |
|
| 23 |
sainfo anonymous |
| 24 |
{ |
| 25 |
encryption_algorithm aes, 3des; |
| 26 |
authentication_algorithm hmac_sha256, hmac_sha1; |
| 27 |
compression_algorithm deflate; |
| 28 |
} |
| 29 |
|
| 30 |
/etc/racoon/psk.txt |
| 31 |
10.0.1.2 This is the shared secret |
| 32 |
|
| 33 |
/etc/ipsec.conf |
| 34 |
flush; |
| 35 |
spdflush; |
| 36 |
|
| 37 |
spdadd 10.0.0.1/32 10.0.1.2/32 any -P out ipsec |
| 38 |
esp/transport//require; |
| 39 |
|
| 40 |
spdadd 10.0.1.2/32 10.0.0.1/32 any -P in ipsec |
| 41 |
esp/transport//require; |
Archives