Hello,<div>I send the following message and i realized my mistakes and got it all corrected and now it looks like my tunnel is working. I could reply to my original message, dont know how to so I am sending it here. Now my new config file that works looks like the following....</div>
<div><br></div><div><span class="Apple-style-span" style="font-family: arial, sans-serif; font-size: 13px; border-collapse: collapse; "><div>type= tunnel </div>
<div>authby= secret </div>
<div> left= 69.15.184.10 </div><div>leftsubnet= <a href="http://192.168.1.0/24" target="_blank" style="color: rgb(42, 93, 176); ">192.168.1.100/</a>32 </div>
<div>leftnexthop= %defaultroute </div>
<div> right= 61.15.184.10 </div><div>rightsubnet= <a href="http://172.33.15.0/24" target="_blank" style="color: rgb(42, 93, 176); ">172.33.15.3/2</a>32 </div>
<div>rightnexthop= %defaultroute </div><div>esp= 3des-md5 </div>
<div> keyexchange= ike </div><div>pfs= no </div>
<div> auto= start </div></span></div><div><br>This tunnel gets established when I see the pluto logs it says it is established. The CISCO admin says it is. When I look at the route entries on me machine I don't see any new routes added. I am not able to ping the other side either. So, with this config what routes should I be seeing? On my gateway, what route should I add so the internet traffic goes to internet and not to the tunnel?</div>
<div>Thanks.</div><div><br></div><div>Thanks.<br><div class="gmail_quote">---------- Forwarded message ----------<br>From: <b class="gmail_sendername">openwan wan</b> <span dir="ltr"><<a href="mailto:openwanw365@gmail.com">openwanw365@gmail.com</a>></span><br>
Date: Thu, Jan 21, 2010 at 2:20 PM<br>Subject: Ubuntu - Cisco help please...<br>To: <a href="mailto:users@openswan.org">users@openswan.org</a><br><br><br>Hello everybody,<div>I am asking for help after spending two days to get this working. I want to connect from my ubuntu machine having a public ip address to couple of pcs inside a corporation. These PCs have 172.x.x.x addresses. I dont have any subnet behind my public machine that is running OpenSwan, that is the machine that will do the talking to the PCS and also runs the OpenSwan. Is it possible at all? The PCs are protected by a Cisco PIX. here is my ipsec.conf file.</div>
<div><br></div><div>type= tunnel
</div><div>authby= secret
</div><div>#RRT </div><div> left= xx.xx.xx.xx </div>
<div>#leftsubnet= <a href="http://192.168.1.0/24" target="_blank">192.168.1.0/24</a>
</div><div>leftnexthop= %defaultroute
</div><div> #SAA </div><div> right= yy.yy.yy.yy </div>
<div>rightsubnet= <a href="http://172.33.15.0/24" target="_blank">172.33.15.0/24</a>
</div><div>rightnexthop= %defaultroute
</div><div>esp= 3des-md5
</div><div> keyexchange= ike
</div><div>pfs= no
</div><div> auto= start </div><div><br></div><div>The tunnel itself is nto getting established, I keep getting Pluto error NO_PROPOSAL accepted. Any help will be appreciated. Thanks.</div>
</div><br></div>