[vpn-help] Connecting to Watchguard from Linux v2.1.7
Kevin VPN
kvpn at live.com
Thu Mar 22 21:39:18 CDT 2012
On 03/22/2012 02:52 PM, tom+shrew at falkensweb.com wrote:
> On Wednesday 21 March 2012 23:18:02 Kevin VPN wrote:
>> The 2.1.5 version of Shrew from the Ubuntu 11.04 repositories works on
>> 11.10 if you can figure out how to downgrade to it instead.
>
> It is indeed 11.10 !
> Bug report commented.
>
> To downgrade I did
> #sudo dpkg -P ike ike-qtgui
> then to install I did
> #sudo dpkg -i ike_2.1.5+dfsg-2_i386.deb ike-qtgui_2.1.5+dfsg-2_i386.deb
>
> I now get a little further. The main GUI says (look for my added **********):
> config loaded for site 'ipsec-users.vpn'
> attached to key daemon ...
> peer configured
> iskamp proposal configured
> esp proposal configured
> client configured
> local id configured
> remote id configured
> pre-shared key configured
> bringing up tunnel ...
> network device configured
> tunnel enabled
> gateway is not responding
> tunnel disabled
> detached from key daemon ...
Hi Tom,
There is another change that has to be made on Ubuntu (all Linux
actually) to make the client work. You need to change a kernel settings
for the rp_filter.
The 10th post in the Ubuntu bug thread references it, but doesn't
specify enough details. This post has all the details you need:
Linux communication issues ...:
http://lists.shrew.net/pipermail/vpn-help/2008-November/000950.html
Ubuntu bug thread #10:
https://bugs.launchpad.net/ubuntu/+source/ike/+bug/860208/comments/10
More information about the vpn-help
mailing list