the other problem with openswan 2.4.9 i am install and configured and and established but no ping <br><br>ipsec.conf<br><br>config setup<br> interfaces=%defaultroute<br> nat_traversal=yes<br> #uniqueids=yes
<br> klipsdebug=all<br> plutodebug=none<br> #virtual_private=%v4:<a href="http://10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16">10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16</a><br><br>conn %default
<br> keyingtries=3<br> compress=no<br> disablearrivalcheck=no<br> ikelifetime=20m<br> keylife=60m<br> rekey=no<br> authby=rsasig<br> #authby=secret|rsasig<br> leftrsasigkey=%cert
<br> rightrsasigkey=%cert<br><br>conn chiclayo-lima<br> also=config-base<br> right=y.y.y.y # Remote vitals<br> rightsubnet=<a href="http://192.168.100.0/24">192.168.100.0/24</a> #
<br> rightid=@y.y.y.y<br> rightrsasigkey=0sAQ...<br> rightnexthop=y.y.y.w # correct in many situations<br> auto=start<br><br><br>conn config-base<br> keyingtries=1<br> #type=tunnel
<br> authby=rsasig<br> rekey=yes<br> left=x.x.x.x # Local vitals<br> leftsubnet=<a href="http://192.168.80.0/24">192.168.80.0/24</a><br> leftid=@x.x.x.x<br> leftrsasigkey=0sAQ...
<br> leftnexthop=x.x.x.w<br><br>and run and established but look ipsec auto --status<br><br>000 #3: "chiclayo-lima":500 STATE_MAIN_I4 (ISAKMP SA established); EVENT_SA_REPLACE in 163s; newest ISAKMP; lastdpd=-1s(seq in:0 out:0)
<br>000 #2: "chiclayo-lima":500 STATE_QUICK_I2 (sent QI2, IPsec SA established); EVENT_SA_REPLACE in 1815s; newest IPSEC; eroute owner<br>000 #2: "chiclayo-lima" <a href="mailto:esp.bad07997@200.31.123.210">
esp.bad07997@200.31.123.210</a> <a href="mailto:esp.47b5bb80@x.x.x.x">esp.47b5bb80@x.x.x.x</a> <a href="mailto:tun.0@y.y.y.y">tun.0@y.y.y.y</a> <a href="mailto:tun.0@x.x.x.x">tun.0@x.x.x.x</a><br>000 #1: "chiclayo-lima":500 STATE_MAIN_I4 (ISAKMP SA established); EVENT_SA_EXPIRE in 484s; lastdpd=-1s(seq in:0 out:0)
<br><br><br>what is the problem ???<br>firewall?? bad config ???<br><br>