[Openswan Users] pinging one way and not the other
mlist
mlist at opendoor.fr
Wed Sep 14 14:53:40 CEST 2005
Norman Rasmussen a écrit :
> Are the gateways the default for all the hosts in the network? i.e. do
> the hosts know that the other network is behind the gateway?
>
> If these new gateways are not the defaults, you might have to add some
> routes on your default gateways to set the remote network via the
> openswan gateway.
>
> I'm surprised ping is working the one way...
>
> By the network size I assume net 1 is 'head office' and net 2 is 'sub
> office'.
yes, but does hat make a difference ?
And I assume that the net 1 default gateway knows to access
> net 2 via gateway 1. Also I assume that net 2's default gateway does
> _not_ know to access net 1 via gateway 2 at the moment.
wrong, both should know how to access each other
Does this all
> sound correct?
>
> Norman
>
>
well, routing is apprently set up when starting ipsec.
after /etc/init.d/ipsec start; i have the following routes:
gw1: 192.168.10.0/24 via 82.224.208.254 dev eth1
82.224.208.0/24 dev eth1 proto kernel scope link x.x.x.x
10.0.0.0/8 dev eth0 proto kernel scope link src 10.0.0.1
default via 82.224.208.254 dev eth1
gw2:82.67.48.0/24 dev eth1 proto kernel scope link src y.y.y.y
192.168.10.0/24 dev eth0 proto kernel scope link src 192.168.10.2
10.0.0.0/8 via 82.67.48.254 dev eth1
default via 82.67.48.254 dev eth1
both are default gateway for their respective subnet
thanks for your answer
regards
--
thomas Constans
04 78 68 17 34
www.opendoor.fr
thomas.constans at opendoor.fr
More information about the Users
mailing list