[Openswan Users] Gateway-To-Gateway ping
Alexander Samad
alex at samad.com.au
Wed Nov 3 18:11:35 CET 2004
Hi
The problem is the src address jump on left and setup the route with ip
route and specify the source address of 192.168.0.1 and do the same on
right.
When you originate a packet from left pining right it uses the source
address of the interface which is not protected by the ipsec tunnel
Alex
On Wed, Nov 03, 2004 at 08:59:10AM +0200, MArtin Erasmus wrote:
> Hi
>
> I have the same problem, I dont know if it is the correct way to solve
> it I by adding a route
> eg route add -net 192.168.1.0 netmask 255.255.255.0 eth1 on the left and
>
> route add -net 192.168.0.0 netmask 255.255.255.0 eth1 on the right
>
> Hope it helps
>
> Martin
>
>
>
> Sebastian Haas wrote:
>
> >-----BEGIN PGP SIGNED MESSAGE-----
> >Hash: SHA1
> >
> >Hello List,
> >
> >we have VPN tunneln between 2 networks:
> >
> >192.168.0.0/24===LEFT...RIGHT===192.168.1.0/24
> >
> >Internal addresses:
> >LEFT = 192.168.0.1
> >RIGHT = 192.168.1.1
> >
> >If i'm on LEFT and try to ping RIGHT via:
> >ping 192.168.1.1 i doesn't work i also tried
> >ping -I eth1 192.168.1.1 (eth1 is the interface for the internal network)
> >
> >~From RIGHT to LEFT it's the same. But if i'm on a computer within the
> >network i can reach both LEFT and RIGHT. But not from the gateway itself.
> >
> >What's wrong?
> >
> >Thanks for your help.
> >
> >- --
> >Mit freundlichen Gr??en / Best Regards
> >Sebastian Haas
> >-----BEGIN PGP SIGNATURE-----
> >Version: GnuPG v1.2.5 (GNU/Linux)
> >Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
> >
> >iD8DBQFBh2uEpqRB8PJG7XwRAgocAJ946qpws1EBEFLXfkkTJOVLUuVkhQCgholV
> >l39wRM7mmsM35TZqBsDsWdM=
> >=nT7B
> >-----END PGP SIGNATURE-----
> >_______________________________________________
> >Users mailing list
> >Users at openswan.org
> >http://lists.openswan.org/mailman/listinfo/users
> >
>
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.openswan.org/pipermail/users/attachments/20041103/4d3c5223/attachment.bin
More information about the Users
mailing list