Wednesday, November 15, 2017

strongswan and meraki

I have been struggling with this for the bulk of the day, trying to get a linux box to connect to a merkai mx.

log from mx-
http://ift.tt/2mr2E6i

ipsec.conf-

conn %default ikelifetime=60m keylife=20m rekeymargin=3m keyingtries=1 keyexchange=ikev1 authby=secret ike=3des-md5-modp1024,3des-sha1-modp1024! esp=3des-md5-modp1024,3des-sha1-modp1024! conn meraki-vpn keyexchange=ikev1 left=%defaultroute auto=add authby=secret type=transport leftprotoport=17/1701 rightprotoport=17/1701 right=172.250.xx.xx

I have messed with the ike/esp for hours still unable to get to phase2.

1510732528.116933419 Warden_Norton events Site-to-site VPN: ISAKMP-SA established 172.250.xx.xx[500]-138.197.xx.xx[500] spi:d6c0db1674716fed:c2ee37f6382c90e7

meraki default ipsec policy-
http://ift.tt/2z1MOVL

Any hints to what I am doing wrong here would be great!

thanks



at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)