Sorry Paul, I made a little mistake in my mail. Actually it was connection for Net-to-roadwarrior and there is no right subnet in that ipsec.config. <br>Following that I also mentioned ipsec.config for Net-to-Net connection and there I did not made mistake.<br><br>Anyway here is that mail with correction :<br><br>______________________________________________<br><br>I am trying to net-to-roadwarrior IPSEC connection beween debian gateway and a Windows XP machine using lsipsectool (http://sourceforge.net/projects/lsipsectool/). I was able to establish the connection but could not get desired pings.<br><br>However after adding one routing table entry in Windows XP machine I could get the desired results (Details mentioned below). <br><br>ipsec.conf on debian gateway<br>=========================<br>version 2.0<br><br>config setup<br> interfaces=%defaultroute<br> nat_traversal=yes<br><br>conn
%default<br> keyingtries=1<br><br>conn nettwo<br> left=10.10.136.90<br> leftsubnet=192.168.1.0/24<br> right=10.10.136.10 #No right subnet as this is Net-ro-roadwarrior<br> authby=secret<br> esp=3des-md5<br> pfs=yes<br> auto=start<br><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-1.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-2.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-5.jpg" alt=""> <img
src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-6.jpg" alt=""><br>LsipsecTool Settings<br>===================<br><br>Local Side of the tunnel:<br> IPAddress: 10.10.136.44<br> Local Address/Network Mask : 10.10.136.44 / 255.255.255.255<br><br>Remote Side of the tunnel<br>---------------------------------------<br> VPN Gateway: 10.10.136.90<br> Remote Internal IP: 10.10.136.90<br> Private Address/Network Mask: 192.168.1.0 / 255.255.255.0<br><br>IPSec Options<br>---------------------<br><br> Authentication method : Pre-shared key (yogesh)<br> Proto/Encryption/Registry: ESP 3DES MD5<br> IKE Duration 3500 Secs. 50000 KBytes<br><br><br><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot.jpg" alt=""><img
src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-3.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-4.jpg" alt=""><br>These configurations established the connection but I could get desired pings only after adding routing table entry in Windows XP side with the command<br><br>ROUTE ADD 192.168.1.0 MASK 255.255.255.0 10.10.136.90<br><br><br>However When I tried to establish Net-to-Net Connection with these changes<br><br>psec.conf on debian gateway<br>=========================<br>version 2.0<br><br>config setup<br> interfaces=%defaultroute<br> nat_traversal=yes<br><br>conn %default<br> keyingtries=1<br><br>conn nettwo<br> left=10.10.136.90<br>
leftsubnet=192.168.1.0/24<br> right=10.10.136.10<br> rightsubnet=192.168.0.0/24<br> authby=secret<br> esp=3des-md5<br> pfs=yes<br> auto=start<br><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-1.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-2.jpg" alt=""><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-5.jpg" alt=""> <img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot-6.jpg" alt=""><br> LsipsecTool Settings<br> ===================<br> <br> Local Side of the tunnel:<br> IPAddress: 10.10.136.44<br> Local Address/Network Mask : 192.168.0.0 / 255.255.255.0<br> <br> Remote
Side of the tunnel<br> ---------------------------------------<br> VPN Gateway: 10.10.136.90<br> Remote Internal IP: 10.10.136.90<br> Private Address/Network Mask: 192.168.1.0 / 255.255.255.0<br> <br> IPSec Options<br> ---------------------<br> <br> Authentication method : Pre-shared key (yogesh)<br> Proto/Encryption/Registry: ESP 3DES MD5<br> IKE Duration 3500 Secs. 50000 KBytes<br> <br> <br><img src="file:///C:/DOCUME%7E1/dchauhan/LOCALS%7E1/Temp/moz-screenshot.jpg" alt="">Here also connection got established but desired pings are not obtained even after adding routing table entry using<br>ROUTE ADD 192.168.1.0 MASK 255.255.255.0 10.10.136.90<br><br>I also tried setting up Windows XP machine as router (http://www.haxial.com/faq/routerconfig/winxp/) but then also I couldn't get
desired pings.<br><br>Can anybody help me for these queries<br><ul><li> Net-to-net vpn connection between Windows XP and Linux Openswan.</li><li> Why it required to add routing table entry for Net-to-roadwarror connection.</li><li> Why Windows XP does not add any virtual connection for IPSEC (like ipsec0 in linux) and relevent routing table entries.</li></ul><b><i></i></b><p> 
<!--3--><hr size=1></hr> Once upon a time there was 1 GB storage in your inbox. <a href="http://in.rd.yahoo.com/tagline_mail_3/*http://help.yahoo.com/l/in/yahoo/mail/yahoomail/tools/tools-08.html/">Click here for happy ending.</a>