[Openswan Users] net2net working one sided any clue..???
Deepak Naidu
deepak_nai at yahoo.com
Wed Jun 1 15:48:59 CEST 2005
Hi,
I have configured net2net VPN connection.
One side VPN server natted behind firewall with
network 192.168.2.0
Other side VPN server dialup with network of
192.168.3.0
After connection I can ping and ssh from 2.0 to 3.0
But cant from 3.0 to 2.0
FC3 openswan 2.3.1 on both side
**********
ipsec.conf for 192.168.2.0 network
**********
version 2.0
config setup
#interfaces=%defaultroute
interfaces="ipsec0=eth0"
klipsdebug=none
plutodebug=none
overridemtu=1410
nat_traversal=yes
conn linux-net2net-cert
keyingtries=3
#pfs=yes
compress=no
disablearrivalcheck=no
authby=rsasig
type=tunnel
keyexchange=ike
ikelifetime=240m
keylife=60m
leftrsasigkey=%cert
rightrsasigkey=%cert
left=192.168.2.214 (ip of VPN server behind
nat)
leftnexthop=192.168.2.234 (gateway ip)
leftsubnet=192.168.2.0/24
right=202.149.x.x
rightsubnet=192.168.3.0/24
leftcert=net.pem
rightcert=home.pem
auto=add
**********
ipsec.conf for 192.168.3.0 network
**********
version 2.0
config setup
interfaces=%defaultroute
#interfaces="ipsec0=ppp0"
klipsdebug=none
plutodebug=none
overridemtu=1410
nat_traversal=yes
conn linux-net2net-cert
keyingtries=3
#pfs=yes
compress=no
disablearrivalcheck=no
authby=rsasig
type=tunnel
keyexchange=ike
ikelifetime=240m
keylife=60m
leftrsasigkey=%cert
rightrsasigkey=%cert
left=202.149.x.x (dialup IP)
leftnexthop=202.149.x1.x1 (gateway of dialup
IP)
leftsubnet=192.168.3.0/24
right=202.149.y.y
rightsubnet=192.168.2.0/24
leftcert=home.pem
rightcert=net.pem
auto=add
Any clues can help me ..... I hope please r there
with such issue..
Regards,
Deepak Naidu.
___________________________________________________________
How much free photo storage do you get? Store your holiday
snaps for FREE with Yahoo! Photos http://uk.photos.yahoo.com
More information about the Users
mailing list