<html>
<head>
<style>
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Verdana
}
</style>
</head>
<body class='hmmessage'>
Hi !<br> Check your mtu settings - i would recommend a setting of "< 1400".<br> Thanks !<br><br><span style="font-family: Tahoma,Helvetica,Sans-Serif; font-style: italic; font-weight: bold;">-<span style="font-family: Times New Roman,Times,Serif;"> Simon Charles - </span></span><br><br><br><br><br>> From: ataraxia_72@hotmail.com<br>> To: users@openswan.org<br>> Date: Mon, 23 Mar 2009 06:59:20 -0700<br>> Subject: [Openswan Users] SSH freezes, openswan to Stonegate<br>> <br>> <br>> Hello all,<br>> <br>> We have an IPsec tunnel between a Linux box (Ubuntu Hardy) and a Stonegate firewall. We can ssh through the tunnel, but once we have a working shell, it freezes after some 8 commands. It seems to be data-volume-related, since a 'top' command freezes it immediately.<br>> <br>> Here's my Openswan config:<br>> <br>> conn tresm-knx<br>> auth=esp<br>> auto=start<br>> authby=secret<br>> type=tunnel<br>> keyexchange=ike<br>> pfs=no<br>> left=ubuntu.public.ip.address<br>> leftsubnet=192.168.131.0/24<br>> right=stonegate.public.ip.address<br>> rightsubnet=10.154.200.0/24<br>> keyingtries=0<br>> <br>> The Linux box has Shorewall 4, but it freezes even if shorewall is stopped<br>> <br>> Is there a setting I am missing that allows for a fluid data stream? Or the other way around, something I have is preventing the data from flowing?<br>> <br>> I have the Stonegate side set to no compression, however I do not know if Openswan, in absence of a declared setting, takes a default configuration that may be conflicting with the tunnel's operation.<br>> <br>> All and any help with this issue is greatly appreciated.<br>> <br>> <br>> <br>> _________________________________________________________________<br>> Get quick access to your favorite MSN content with Internet Explorer 8. <br>> http://ie8.msn.com/microsoft/internet-explorer-8/en-us/ie8.aspx?ocid=B037MSN55C0701A<br>> _______________________________________________<br>> Users@openswan.org<br>> http://lists.openswan.org/mailman/listinfo/users<br>> Building and Integrating Virtual Private Networks with Openswan: <br>> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155<br></body>
</html>