On Fri, Jun 15 2007 at 14:12, Sebastian Reitenbach wrote:
> Hi all,
Hi,
> ike active esp from 192.168.27.0/24 to 192.168.0.0/16 \
> local 223.150.201.44 peer 34.123.15.43 \
> main auth hmac-md5 enc 3des group grp2 \
> quick auth hmac-md5 enc aes group modp1024 \
> psk "MySecretPassPhrase"
There is a mistake in the main mode declaration. Your group cannot be
set to "grp2". You should use modp1024 as in the quick mode statement.
>From ipsec.conf man mage :
The following group types are permitted with the group keyword:
Group Size
modp768 768
modp1024 1024
modp1536 1536
modp2048 2048
modp3072 3072
modp4096 4096
modp6144 6144
modp8192 8192
none 0 [quick mode only]
Regards,
Claer
