<html>
<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 11 (filtered)">
<title>post tunnel creation question.</title>
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
p
{margin-right:0in;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman";}
span.EmailStyle18
{font-family:Arial;
color:navy;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
{page:Section1;}
-->
</style>
</head>
<body lang=EN-US link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><font size=2 color=navy face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:navy'>Digging deeper into the problem I found
that the tunnel was working. I had a bad hard-coded route on my laptop. Adding
{left,right}sourceip to the connection also fixed the gw-gw ping…</span></font></p>
<p class=MsoNormal><font size=2 color=navy face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:navy'> </span></font></p>
<p class=MsoNormal><font size=2 color=navy face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:navy'>I’ve spent 4 hours on something that
was working… Doh.</span></font></p>
<p class=MsoNormal><font size=2 color=navy face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:navy'> </span></font></p>
<p class=MsoNormal><font size=2 color=navy face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:navy'>Gary</span></font></p>
<p class=MsoNormal><font size=2 color=navy face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:navy'> </span></font></p>
<p class=MsoNormal><font size=2 color=navy face=Arial><span style='font-size:
10.0pt;font-family:Arial;color:navy'> </span></font></p>
<div>
<div class=MsoNormal align=center style='text-align:center'><font size=3
face="Times New Roman"><span style='font-size:12.0pt'>
<hr size=2 width="100%" align=center tabindex=-1>
</span></font></div>
<p class=MsoNormal><b><font size=2 face=Tahoma><span style='font-size:10.0pt;
font-family:Tahoma;font-weight:bold'>From:</span></font></b><font size=2
face=Tahoma><span style='font-size:10.0pt;font-family:Tahoma'>
users-bounces@openswan.org [mailto:users-bounces@openswan.org] <b><span
style='font-weight:bold'>On Behalf Of </span></b>Gary W. Smith<br>
<b><span style='font-weight:bold'>Sent:</span></b> Friday, January 14, 2005
5:26 PM<br>
<b><span style='font-weight:bold'>To:</span></b> users@openswan.org<br>
<b><span style='font-weight:bold'>Subject:</span></b> [Openswan Users] post
tunnel creation question.</span></font></p>
</div>
<p class=MsoNormal><font size=3 face="Times New Roman"><span style='font-size:
12.0pt'> </span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>I’m
new to ipsec so forgive me if this is simple.</span></font> </p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>I
have looked over both the freeswan and openswan sites and can’t really
find what</span></font> <font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I am looking for. </span></font> <font size=2
face=Arial><span style='font-size:10.0pt;font-family:Arial'>I have</span></font>
<font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>established
a tunnel between two firewalls and everything appears to be working with the
exception of routing.</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>I
can’t ping either end of the network, including the initiator, over the
tunnel.</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>The
routes look like this on the initiators side:</span></font></p>
<p><font size=1 face="Courier New"><span style='font-size:7.5pt;font-family:
"Courier New"'>63.185.225.128
0.0.0.0 255.255.255.128
U 0
0 0 eth0</span></font></p>
<p><font size=1 face="Courier New"><span style='font-size:7.5pt;font-family:
"Courier New"'>10.94.16.0 63.185.225.129
255.255.255.0 UG 0
0 0 eth0</span></font></p>
<p><font size=1 face="Courier New"><span style='font-size:7.5pt;font-family:
"Courier New"'>10.0.0.0
0.0.0.0
255.255.255.0 U
0 0 0
eth1</span></font></p>
<p><font size=1 face="Courier New"><span style='font-size:7.5pt;font-family:
"Courier New"'>169.254.0.0
0.0.0.0
255.255.0.0 U
0 0 0
eth1</span></font></p>
<p><font size=1 face="Courier New"><span style='font-size:7.5pt;font-family:
"Courier New"'>0.0.0.0
63.185.225.129 0.0.0.0
UG 0
0 0 eth0</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>The
10.94.16.x is the remote network. The other site looks about the same
(except pointing to this lan on eth0).</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>I
have this in both configs:</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>conn
a-to-b</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
type=tunnel</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
left=63.185.225.254</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
leftsubnet=10.0.0.0/16</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
leftid=@location.a</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
leftrsasigkey=0soLLYAb7EUYCi+FbByIJOwMbH0F99W2EvBF3+zHnp</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
leftnexthop=%defaultroute</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
right=83.29.32.49</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
rightsubnet=10.94.16.0/24</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
rightid=@locationb</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
rightrsasigkey=0sYXVoyk7PBn4toDslSw5EBGWPJS/u9x9uQasxuBm</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
rightnexthop=%defaultroute</span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>
auto=add</span></font></p>
<p class=MsoNormal><font size=3 face="Times New Roman"><span style='font-size:
12.0pt'> </span></font></p>
<p><font size=2 face=Arial><span style='font-size:10.0pt;font-family:Arial'>Did
I miss something?</span></font></p>
</div>
</body>
</html>