[Openswan Users] possible routing problem

Adam KOSA adamk at 3a.hu
Fri Apr 14 10:57:28 CEST 2006

Hi guys,

this must be a basic question, but i've failed to find the relevant 
documentation.  I set up the following:

[openswan client]-------[openswan server]--------[lan]

and tcpdump -i eth0 shows encrypted packets, tcpdump -i ipsec0 shows icmp 
packets from client to server (on both sides of the encrypted connection). 
however, it seems to me that pinging the lan from the client fails, because the 
icmp reply packet does not find its way back to the openswan client.  the server 
has different subnets on both sides, the reply packet comes in from the lan, and 
that's it.  it never goes out towards the client.

is this some routing problem, or some openswan road warrior misconfiguration 


More information about the Users mailing list