When I bring up both connections, according to the logs it seems OpenSwan is stuck in a continuous loop of attempting renegotiate each connection in turn (I can only ping one subnet at any one time).
The received wisdom seems to be to create two separate connections (one per subnet) in OpenSwan and when making an additional connection it will automatically attempt to reuse an existing phase 1 tunnel (when creating a new phase 2 tunnel for the additional connection). I need to be able to access both subnets at the same time.
This allows me to successfully make a connection to one of the subnets. In the FortiGate I have defined one Phase 1 connection and one Phase 2 connection. The FortiGate sits on two distinct subnets and I need to access both of them. I am trying to make an IPsec connection to a FortiGate router using OpenSwan.
0 kommentar(er)
