I am trying to follow "http://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-vpn.html#s1-ipsec-net2net"

I have come up with the following On local router machine: in my ifcfg-ipsec0:

ONBOOT=yes
IKE_METHOD=PSK
DSTGW=10.5.27.1
SRCGW=10.6.159.1
DSTNET=10.5.27.0/25
SRCNET=10.6.159.0/24
DST=205.X.X.X
TYPE=IPSEC

I have /etc/sysconfig/network-scripts/keys-ipsec0 file in place.

On Remote Machine in the cloud if have /etc/sysconfig/network-scripts/ifcfg-ipsec1:

TYPE=IPSEC
ONBOOT=yes
IKE_METHOD=PSK
SRCGW=10.5.27.1
DSTGW=10.6.159.1
SRCNET=10.5.27.124/25
DSTNET=10.6.159.0/24
DST=38.x.x.x

with its respective /etc/sysconfig/network-scripts/key-ipsec1 file.

The DST in both cases are NAT'd external IPs. Is that a problem?

I have made changes for port forwarding as well.

When I try to bring the interfaces up it gives me output "RTNETLINK answers: Invalid argument". I am confused now and don't know what more to do?

Any place I can digup what parameters were wrong?

I really appreciate any help I can get.

Thanks and Regards, Atul.