jggimi / ocicat
The key I posted was not valid. We use it only for testing.
The scenario is as follows:
Tunnel Parameters
Company: 200.200.10.10
Client: 200.200.20.20
Authentication algorithm: MD5
Encryption: 3DES
Pre-shared key: 1q2w3e (not true)
Host / network settings
Client: 200.200.30.0/24
Company: 10.20.30.252/30
The configuration I'm doing in ipsec.conf is:
Ike esp from 200.200.10.10 to 200.200.20.20 \
Main auth hmac-md5 enc 3des \
Quick auth hmac-md5 enc 3des \
Psk 1q2w3e
This IP 10.20.30.252/30 is not mine and I understood that in my firewall will be created an interface with it after connecting
And to reach 200.200.30.0/24 you will need to create a static route using the IP 10.20.30.252/30 as gateway.
I questioned the client if this network was correct 200.200.30.0/24 and said that it is right.
I have never set up ipsec and would like to know if this is the case.