IPSEC between CISCO ASA 5540 and OPENSWAN (UBUNTU14) where is the error?

M

mte2016-07-06 13:44:34

Cisco

mte, 2016-07-06 13:44:34

there is a CISCO ASA5540 IP white 1.1.1.1 router asus IP white 2.2.2.2 UBUNTU with OPENSWAN 192.168.114.1 behind the router
between cisco and ubuntu you need to configure ipsec from cisco phase1 IKEv1 AES256-CBC SHA1 3600s // phase2 ESP AES256-CBC SHA1 3600s and key "12345678"
config:
/etc/ipsec.secrets
@left @right : PSK "12345678"
/etc/ipsec.conf
version 2.0
config setup
dumpdir=/var/run/pluto/
nat_traversal=yes
virtual_private=%v4:10.0. 0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v6:fd00::/8,%v6:fe80::/10
oe= off
protostack=netkey
conn test
authby=secret
auth=esp
keyexchange=ike
ike=aes256-sha1
esp=aes256-sha1
pfs=yes
left=192.168.114.1
leftnexthop=%defaultroute
leftsubnet=192.168.114.0/24
[email protected]
right=1.1.1.1
rightubnet=192.168.113.0/24
[email protected]
auto =add
connection is not established at startup ... writes

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

D

Dmitry Shitskov, 2016-07-06
@Zarom

Lay out a config of a tsiska too.
Is NAT-T enabled on it?
Perhaps it will be easier if you build a GRE tunnel between Cisco and Ubuntu and encrypt the traffic inside this tunnel.

M

mte, 2016-07-06
@mte

there is no cisco config. it's not with us .. they just sent connection data and a key for ipsec...