<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.6000.16735" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT face=Arial size=2>I'm trying to establish a VPN between a
ClarkConnect 4.3 <SPAN class=541494818-12112008>(Community) </SPAN>box in
Gateway Mode and a Windows network. I successfully establish a tunnel, I can
ping<SPAN class=541494818-12112008>/browse</SPAN> from the Windows network to
the CC box, I can not ping<SPAN class=541494818-12112008>/browse</SPAN> from CC
to Windows.<BR><BR>My first attempt was connecting through a Sonicwall TZ170
router. I thought maybe the router was the issue so I created a tunnel through a
Linksys BEFVP41 router. On both routers I see the established tunnel, I can ping
the CC box, but I can not ping from a machine on the CC network to the other end
of the tunnel.<BR><BR>On the CC box I do a tcpdump on eth0. When pinging from
the other end of the tunnel to CC I see ESP traffic. If I ping from a laptop
connected to the CC box I see an icmp request but no ESP traffic.<BR><BR>I've
searched <SPAN class=541494818-12112008>the ClarkConnect forum, the
Sonicwall website, and Googled Openswan</SPAN>. I see lots of information about
VPN's but nothing resolving my issue. My understanding is that the Phase I (IKE)
proposal establishes a tunnel. Then within that initial tunnel, the Phase II
proposal establishes two one-way tunnels to exchange the traffic. It seems that
a tunnel from the Sonicwall/Linksys router to the CC box passes traffic but the
tunnel from CC to the others does not pass traffic.<BR><BR>All of my changes
have been made in the /etc/ipsec.conf and ipsecrets.conf files. I found that to
establish a connection I needed to enter more information in these files than
the gui allows. <SPAN class=541494818-12112008>A barf file is
attached</SPAN>.<SPAN class=541494818-12112008> </SPAN> Note: I've tried
with nat_traversal set to yes and no with the same results.<BR></FONT></DIV>
<DIV><FONT><SPAN class=541494818-12112008><FONT face=Arial size=2>Any help would
be greatly appreciated.</FONT></SPAN></DIV></FONT>
<DIV><FONT face=Arial size=2> </DIV></FONT>
<DIV align=left><FONT face=Arial size=2>John Thomas</FONT></DIV>
<DIV><FONT face=Arial size=2>AssistedCare Management Group, Inc</FONT></DIV>
<DIV><FONT face=Arial size=2>(910) 332-2346 x215</FONT></DIV>
<DIV><FONT face=Arial size=2>(910) 371-3462 fax</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT size=2>CONFIDENTIALITY NOTE: This message is intended for use only by
the individual or entity to which it is addressed, and may contain information
which is privileged, confidential, and exempt from disclosure under applicable
law. If the reader of this message is not the intended recipient, or the
employee or agent responsible for delivering the message to the intended
recipient, you are hereby notified that any dissemination, distribution or
copying of this communication or any attachments is strictly
prohibited.</FONT></DIV>
<DIV> </DIV></BODY></HTML>