I've posted on their support forum and have had 0 luck so far so I figured I'd try here.

My name is Plaethos and I'm a Linux Newb...I've been addicted to Linux now for the past 2 weeks trying to figure out a solution to a VPN which seems to be failing at phase 2, due to the IPsec proposal not matching.

I feel as though I am beating a dead horse with cross checking the settings on the devices and overlooking some small things.

The Sonicwall's "Crypto Suite" is such: ESP: 3DES/HMAC MD5 (IKE)
On my linux box, the configs I have in place is:

Openswan version: U2.6.19/K2.6.27.5-117.fc10.i686

conn vpn
# LAN Side
left=10.20.30.14
leftsubnet=10.20.30.0/25
# leftnexthop=%defaultroute
leftid=10.20.30.14
type=tunnel
auto=start
authby=secret
keyingtries=%forever
salifetime=8h
# aggrmode=yes
# Wan Side
right=*public IP of Sonicwall*
rightsubnet=10.10.0.0/21
rightid=*Sonicwall Identifier - which is Public IP*
rightnexthop=%defaultroute
# Encryption
ikev2=no
# pfs=yes
#esp=aes256-sha1
# keyexchange=ike
ike=aes256-sha1-modp1024
# ike=3des-sha1-modp1024
phase2=esp
phase2alg=3des-md5-1024

My Ipsec.secrets file is *wan ip* *lan ip* : PSK "somesecret"


I'm really hoping someone could shed some light on what I could be overlooking as I feel as though I have become tunnel visioned at this point. I'm about to do a second Linux box to verify my settings so I can figure out if it's an issue with the Sonicwall or my Linux box. One last thing to NOTE: I have followed the directions from SonicWall's website of *"How to setup IKE, Site to Site, Road Warrior, etc...type configurations using OpenSwan to a Sonicwall"* and still no luck.


Thanks in advance! Hope someone can help...

Plaethos.