Hi,
[EMAIL PROTECTED] wrote:
>
> It will be helpful, if you can give the corresponding PIX configuration as
well.
> your ipsecctl.conf seems to be good! Can you give us the output of
ipsecctl -vv
> -sa and tail -f /var/log/{daemon, messages}
>
just got the relevant part of the PIX config, sometimes you just need to ask
again, I don't know whether this is all, I never used a PIX myself:
> > Here is the relevant config entries from our PIX:
> >
> > crypto ipsec transform-set VPNTUNNEL esp-aes esp-md5-hmac crypto map
> > outside map 40 match address outside cryptomap 40 crypto map
> > outside map 40 set pfs crypto map outside map 40 set peer
> > remote_gw crypto map outside map 40 set transform-set VPNTUNNEL
> > crypto isakmp policy 10 authentication pre-share encryption 3des
> > hash md5 group 2 lifetime 86400 tunnel-group remote_gw type
> > ipsec-l2l tunnel-group
> > remote_gw ipsec-attributes pre-shared-key * access-list
> > outside cryptomap 40 extended permit ip GSN VLAN 255.255.255.0
> > 192.168.0.0 255.255.255.0
> Prabhu
> -
>
kind regards
Sebastian
