[Openswan Users] OpenSWAN VPN only kinda working
Jeff Williams
jwilliams at digitalfairway.com
Tue Jan 4 21:30:53 CET 2005
Hello,
Config:
Right: OpenSwan 2.1.5 (RPM) on Fedora Core 3 default kernel 2.6.9
iptables 1.2.11 network 192.168.100.0/24
Left: a Netwinder (ARM processor) using FreeSWAN 1.3 kernel 2.2.14
ipchains 1.3.9 network 192.168.101.0/24
- all was good when I ran SuperFreeSWAN 1.99 on right on 2.2 kernel
(upgraded to new machine)
- VPN is up, ping both ways no problem.
- left side net host (eg 192.168.101.202) can connect (telnet, cvs etc)
to any host on the right (eg 192.168.100.10)
- right side host (eg 192.168.100.22) CAN'T connect to any host n the
left (eg 192.168.101.202)
- left side log has: Jan 4 20:22:32 dfcottawa kernel: ip_demasq_esp():
Inbound from 207.164.133.170 SPI E4B7F7AC has no masq table entry
Google search didn't help much and I couldn't find an archive for the
mailing list. From things I did found this could be an issiue with my
iptables? Or an issue with the way the IPSEC packets pass through the
kernel? Could OpenSWAN 2.3 with KLIPS on the 2.6 Kernel fix this?
Thoughts? Thanks, Jeff
connection config:
conn TORONTO-OTTAWA
authby=rsasig
auto=start
left=207.164.133.170
leftfirewall=no
leftnexthop=207.164.133.169
leftrsasigkey=0xlong hex string
leftsubnet=192.168.100.0/24
right=207.61.226.218
rightfirewall=yes
rightnexthop=207.61.226.217
rightrsasigkey=0xlong hex string
rightsubnet=192.168.101.0/24
rightsourceip=192.168.101.1
More information about the Users
mailing list