View Single Post
  #8   (View Single Post)  
Old 21st July 2009
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,977
Default

Have you tried any peer settings, Milo? What else have you tried?

We can't see your console from here. From your posts, it looks like you're not doing any testing, just waiting for someone to tell you what to type in.

Try this ipsec.conf. Use passive, until you get this working, since you are testing this inside your local network. Note that this configuration does not use any-to-any:
Code:
ike passive from any to 192.168.0.111 peer any \
 main auth hmac-sha1 enc aes group modp1024 \
 quick auth hmac-sha1 enc aes psk 123456A

ike passive from 192.168.0.111 to any  \
  main auth hmac-sha1 enc aes group modp1024 \
  quick auth hmac-sha1 enc aes psk 123456A
Try this ipsec.conf. Reset the environment, by stopping isakmpd. After editing ipsec.conf, run isakmpd from the console, so you can see the output. For example:
# pkill isak
# vi /etc/ipsec.conf (edit as above)
# isakmpd -Kvd &
# ipsecctl -f /etc/ipsec.conf
Any error or success messages will appear on your console.
Reply With Quote