[Openswan Users] vpn route problem
Paul Wouters
paul at xelerance.com
Wed Apr 12 23:34:59 CEST 2006
On Wed, 12 Apr 2006, José Angel Blanco González wrote:
> 10.242.192.0/27-----195.55.11.30-------------212.89.0.28-----10.10.2.0/23
>
> This is a copy of the conn in /etc/ipsec.conf
> conn vpn-net
> left=195.55.11.30
> leftsubnet=10.242.192.0/27
> leftnexthop=%defaultroute
> right=212.89.0.28
> rightsubnet=10.10.2.0/23
> rightnexthop=%defaultroute
> I receive the msg "IPSec SA established" but I cant route.
Looks okay.
> "route -n" shows this
You should not add manual routes to the routing table.
Run ipsec verify and see if it complains about any problems
Double check you are not NATing IPsec packets to oblivion.
Paul
More information about the Users
mailing list