[Openswan Users] Can't reach hosts behind my VPN-Gateway

Sebastian Albrecht albrecht at irf.de
Mon Apr 19 13:46:10 CEST 2004


> So you see encrypted packets coming in on eth1, but no packets being 
> forwarded out eth0?

Exactly. When pinging 192.168.0.1, everything is fine. Here is some dumping:
ping 192.168.0.1
tcpdump listening on eth1
10:57:38.385568 192.168.0.3 > 192.168.0.1: ESP(spi=0xa2f9c139,seq=0x25)
10:57:38.385822 192.168.0.1 > 192.168.0.3: ESP(spi=0x45d783ed,seq=0x19)
tcpdump listening on ipsec1
10:57:38.385568 192.168.0.3 > 192.168.0.1: icmp: echo request
10:57:38.385721 192.168.0.1 > 192.168.0.3: icmp: echo reply

When pinging the other gateway's IP:
ping 10.0.18.60
tcpdump listening on eth1
10:57:31.631723 arp who-has 10.0.0.1 tell 192.168.0.3
tcpdump listening on eth0
<empty>

You see, no traffic on eth0.

Maybe i have a problem similar to the one in
http://lists.strongswan.org/pipermail/users/2004-April/000016.html

regards, Sebastian.


More information about the Users mailing list