[Openswan Users] Roadwarrior and route troubles
Paul Wouters
paul at xelerance.com
Thu Sep 1 15:56:52 CEST 2005
On Thu, 1 Sep 2005, Vincent SCHULTZ wrote:
>
> The sniff of the ping to the 10.10.45.13 client on the mobile device :
>
> 13:46:39.598719 IP 203.41.30.111 > 10.10.45.13: icmp 64: echo request seq 118
> 13:46:39.598803 IP 203.41.30.254 > 203.41.30.111: icmp 92: net 10.10.45.13 unreachable
>
> Then it tries to access directly 10.10.45.13 and the gateway 203.41.30.254 doesn't known the ip route. The traffic in not ESP encapsulated.
If you really want a LAN-LAN connection, define both sdies to use that
192.168.0.0/24 subnet. If you want host to lan, remove it from the client's
end.
I'm not sure why your (linux?) mobile device is not properly sending out
packets over ESP if you have a proper tunnel defined. Show the output of
'ipsec barf' when the tunnel is established.
Paul
More information about the Users
mailing list