openswan & checkpoint vpn & PSK pre-shared key
Posted: November 12th, 2007 | Author: paul | Filed under: howto, linux | Tags: checkpoint, howto, ike, key, linux, openswan, pre-shared, psk, vpn | 2 Comments »Here is how I managed to successfully connect to a hardware vpn device using openswan and opensuse:
conn chkpnt
authby=secret
pfs=yes
keyexchange=ike
left=your.ip
right=vpn's.ip
auto=start
Easy…:)
/etc/init.d/ipsec restart
Check status and debug with:
ipsec auto --status
ipsec barf
Update:
Add: rightsubnet=ips.behind.vpn.box
to to get in touch with remote network.
The first part, what file I have to edit?
ipsec.conf
for more info check: http://wiki.openswan.org/index.php/Openswan/Configure