fortigate 111c to ubuntu vpn

Jkhatri khatri.jatin at gmail.com
Tue Apr 8 14:49:17 UTC 2014 

On Tuesday 08 April 2014 01:59 PM, blamares023452 wrote:
> Hello,
>
> We have a VPN connection at work setup from where people with OSX have 
> got it to work. But I cant get it to work on ubuntu Ubuntu  12.04.4 LTS.
>
> On OSX the settings that work are: Server: 123.123.123.123, 
> accountname: pelle, password: pwd_pelle, with a shared key: pwd_group 
> (and empty group name). [as a cisco vpn tunnel]
>
> This is my /etc/ipsec.conf
> [CODE]# /etc/ipsec.conf - Openswan IPsec configuration file
> # $Id$
>
> # Manual: ipsec.conf(5)
>
> # Created: Tue Mar 25 09:08:06 2014
> #      by: The L2TP IPsec VPN Manager application version 1.0.6
> #
> # WARNING! All changes made in this file will be lost!
>
> version    2.0    # conforms to second version of ipsec.conf specification
>
> config setup
>     # plutodebug="parsing emitting control private"
>     plutodebug=none
>     strictcrlpolicy=no
>     nat_traversal=yes
>  interfaces=%defaultroute
>     oe=off
>     # which IPsec stack to use. netkey,klips,mast,auto or none
>     protostack=netkey
>
> conn %default
>     keyingtries=3
>     pfs=no
>     rekey=yes
>     type=transport
>     left=%defaultroute
>  leftprotoport=17/1701
>  rightprotoport=17/1701
>
> # Add connections here.
>
>
> conn Work
>   leftid=@VPN_Group_2
>   leftxauthusername=pelle
>     left=%defaultroute
>  right=123.123.123.123
>   keyexchange=ike
>   auto=start
>   auth=esp
>   authby=secret
>   ikelifetime=28800s
>   esp=3des-sha1;modp1024
>   ike=3des-sha1,aes128-sha1;modp1024
>   pfs=yes
>   compress=no
>   forceencaps=yes
>   remote_peer_type=cisco
>   rightxauthserver=yes[/CODE]
>
> And this is my ipsec.secrets
> [CODE]# /etc/ipsec.secrets - secrets for IKE/IPsec authentication
> # $Id$
>
> # Manual: ipsec.secrets(5)
>
> # Created: Tue Mar 25 09:08:06 2014
> #      by: The L2TP IPsec VPN Manager application version 1.0.6
> #
> # WARNING! All changes made in this file will be lost!
> #
> #
> # This file holds shared secrets or RSA private keys for inter-Pluto
> # authentication.  See ipsec_pluto(8) manpage, and HTML documentation.
>
> # RSA private key for this host, authenticating it to any other host
> # which knows the public part.  Suitable public keys, for ipsec.conf, DNS,
> # or configuration of other implementations, can be extracted conveniently
>

have a look at these[1,2,3]

ready to use [1] if you like or else try other options [2],[3]



[1] 
ftp://pftpintl:F0rt1intl@support.fortinet.com/FortiGate/v4.00/4.0/4.0.0/SSL%20VPN%20Clients/forticlientsslvpn_linux_4.0.2010.tar.gz

[2] 
http://askubuntu.com/questions/134715/fortinet-ssl-vpn-client-and-ubuntu-12-04

[3] http://www.ucalgary.ca/it/networks/vpn/admin/linux



may be those can help you


Warm Regards,

Take Care


-- 

*/

Jatin Khatri

RHCSA RHCE CCNA

www.fedoraproject.org/wiki/Jatin <http://www.fedoraproject.org/wiki/Jatin>

Phone (+91) 98250 20393

Save Paper, Save Environment.**
/*(Plant at least one tree in your life and nurture it !!!)*/


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20140408/19a4a3a4/attachment.html>

More information about the ubuntu-users mailing list