[Openswan Users] nat problem
Nived Gopalan
nived.gopalan at gmail.com
Wed Apr 19 19:51:38 CEST 2006
Hi,
I get the following error when i run ipsec verify command ;
Checking tun0x1002 at x.x.x.x from 192.168.111.0/24 to 192.168.195.0/24
[FAILED]
MASQUERADE from 192.168.111.0/24 to 0.0.0.0/0 kills tunnel
192.168.111.0/24 -> 192.168.195.0/24
[FAILED]
I'm able to ping between the openswan hosts/firewall, but not the
machines behind it. I have added the following firewall rules ..
iptables -t nat -A POSTROUTING -o eth0 -s 192.168.111.0/24 -d !
192.168.195.0/24 -j MASQUERADE
eth0 is facing internet and eth1 local network.
local network 192.168.111.0/24
remote network 192.168.195.0/24
Any ideas on this?
-Nived.
More information about the Users
mailing list