[Openswan Users] Not passing the "STATE_QUICK_I1: initiate"
Andy
fs at globalnetit.com
Wed Nov 9 02:08:31 CET 2005
On Tue, 2005-11-08 at 18:32 -0300, Oliver Schulze L. wrote:
> left=172.xx.219.14
> leftnexthop=172.xx.219.13
> leftsubnet=192.168.150.1/32
> right=10.xx.200.2
> rightnexthop=10.xx.200.1
> rightsubnet=10.1.254.63/32
> All this is OK, but, I still have no ping.
What addresses are you pinging to and from? That connection will allow
packets ONLY from 192.168.150.1 to 10.1.254.63, and back.
According to your route table, your eth1 interface is in network
192.168.150.0/24, but you say that has no hosts attached. So I presume
the interface itself is 192.168.150.1? In that case you need to force
that address as the source in your pings - try
ping -I 192.168.150.1 10.1.254.63
The host at 10.1.254.63 will need a route back to you as well, of
course.
You do have IP forwarding enabled, right?
More information about the Users
mailing list