vpn-ipsec : Failed to parse config setup portion of ipsec.conf
hai i am new to linux.i am using Centos 5.3 . kernel 2.6.18-128.el5
i have a problem with vpn. i want to connect two devices on the same lan with vpn. for that i install openswan,l2tpd and pptp.then i configure the files shown below:
1) vi /etc/ipsec.conf
version2.0
config setup
interfaces=%defaultroute
klipsdebug=none
plutodebug=none
overridemtu=1410
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16
conn %default
keyingtries=3
compress=yes
disablearrivalcheck=no
authby=secret
type=tunnel
keyexchange=ike
ikelifetime=240m
keylife=60m
conn roadwarrior-net
leftsubnet=192.168.0.0/16
also=roadwarrior
connroadwarrior-all
leftsubnet=0.0.0.0/0
also=roadwarrior
conn roadwarrior-l2tp
leftprotoport=17/0
rightprotoport=17/1701
also=roadwarrior
conn roadwarrior-l2tp-updatedwin
leftprotoport=17/1701
rightprotoport=17/1701
also=roadwarrior
connroadwarrior
pfs=no
left=192.168.10.18 ( this is my linux centos 5.3 ip)
leftnexthop=192.168.10.240(this is my default server)
right=%any
rightsubnet=vhost:%no,%priv
auto=add
#Disable Opportunistic Encryption
include /etc/ipsec.d/examples/no_oe.conf
.........................................................................
2) vi /etc/ipsec.secrets
include /etc/ipsec.d/*.secrets
192.168.10.18 %any: PSK "this_is_ur_key"
....................................................
after i did some changes in the configuration files of l2tpd service
atlast i start l2tpd service. it works fine.
next i start ipsec.
then i got the error:
can not load config '/etc/ipsec.conf': /etc/ipsec.conf:1: syntax error, unexpected STRING, expecting $end [version2.0]
Failed to parse config setup portion of ipsec.conf
...........................................
pls help to fix the problem.
........................
i check my /var/log/messages file.
here r the few lines . i didn't know how to fix error from this file.
.......................................................................
Jun 18 11:38:40 localhost nmbd[2796]: Packet send failed to 192.168.10.255(137) ERRNO=No such process
Jun 18 11:38:40 localhost nmbd[2796]: [2010/06/18 11:38:40, 0] nmbd/nmbd_packets.c:send_netbios_packet(163)
Jun 18 11:38:40 localhost nmbd[2796]: send_netbios_packet: send_packet() to IP 192.168.10.255 port 137 failed
Jun 18 11:38:40 localhost nmbd[2796]: [2010/06/18 11:38:40, 0] nmbd/nmbd_namequery.c:query_name(245)
Jun 18 11:38:40 localhost nmbd[2796]: query_name: Failed to send packet trying to query name MYGROUP<1d>
Jun 18 11:42:47 localhost nmbd[2796]: [2010/06/18 11:42:47, 0] libsmb/nmblib.c:send_udp(793)
...............................................................
pls help me............
|