1 |
Mick <michaelkintzios@×××××.com> writes: |
2 |
|
3 |
> Any progress with this guys? I am also trying to get something running |
4 |
> between a router and my laptop (using kvnc) but I am failing with this error: |
5 |
|
6 |
Here are some samples. |
7 |
|
8 |
/etc/racoon/racoon.conf |
9 |
path pre_shared_key "/etc/racoon/psk.txt"; |
10 |
|
11 |
remote anonymous |
12 |
{ |
13 |
exchange_mode main; |
14 |
proposal { |
15 |
encryption_algorithm aes; |
16 |
hash_algorithm sha1; |
17 |
lifetime time 24 hour; |
18 |
dh_group 2; |
19 |
authentication_method pre_shared_key; |
20 |
} |
21 |
} |
22 |
|
23 |
sainfo anonymous |
24 |
{ |
25 |
encryption_algorithm aes, 3des; |
26 |
authentication_algorithm hmac_sha256, hmac_sha1; |
27 |
compression_algorithm deflate; |
28 |
} |
29 |
|
30 |
/etc/racoon/psk.txt |
31 |
10.0.1.2 This is the shared secret |
32 |
|
33 |
/etc/ipsec.conf |
34 |
flush; |
35 |
spdflush; |
36 |
|
37 |
spdadd 10.0.0.1/32 10.0.1.2/32 any -P out ipsec |
38 |
esp/transport//require; |
39 |
|
40 |
spdadd 10.0.1.2/32 10.0.0.1/32 any -P in ipsec |
41 |
esp/transport//require; |