LinuxQuestions.org - OpenSwan: "%defaultroute" or "can't identify ourselves"

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - OpenSwan: "%defaultroute" or "can't identify ourselves" (https://www.linuxquestions.org/questions/linux-networking-3/openswan-defaultroute-or-cant-identify-ourselves-487210/)

sundialsvcs

09-26-2006 04:55 PM

OpenSwan: "%defaultroute" or "can't identify ourselves"

Danged if I do, danged if I don't...

With OpenSwan...

(1) In "ipsec.conf," the config says "interfaces=%defaultroute"

(2) In a connection that says "left=%defaultroute," I get:
"%defaultroute requested but not known"

(3) If instead "left=192.168.254.254" (the default gateway from here):
"cannot identify ourselves with either side of the connection"

Ummm.....?

sundialsvcs

09-26-2006 05:00 PM

Note: If I put left=w.x.y.z, where "w.x.y.z" is the actual IP-address of my ethernet port, into the conn(ection) entry in ipsec.conf, then I can proceed.

But, obviously, I shouldn't have to specify any hard-coded address. There must be another, obvious :rolleyes: way to specify that "the connection is 'from here.'"

Also: "%any" gives the same "can't identify" message as before.

All times are GMT -5. The time now is 12:17 PM.