[Openswan Users]
Andy Gay
andy at andynet.net
Sun Jul 23 01:55:37 CEST 2006
On Sat, 2006-07-22 at 19:01 -0500, Greg Scott wrote:
> I must be missing something basic here. I am trying to a simple tunnel
> with 2 subnets. Here is the scenario below. Apologies if an emailer
> somewhere along the line butchers the line wrapping.
>
> Roseville
> Lakeville
> Left
> Right
> Left Firewall <-Internet--> Right Firewall
> 10.13.1.0/24 eth1 eth0 eth0 eth1
> 10.15.1.0/24
> 10.13.1.1 71.216.115.33 209.130.212.154 10.15.1.75
So here you say that leftsubnet is 10.13.1.0/24, rightsubnet is
10.15.1.0/24.
But later on in your config file, you have those the other way around:
> [root at lakeville-fw etc]# more ipsec.d/Roseville-Lakeville.conf
> conn Roseville-Lakeville
> left=71.216.115.33
> leftsubnet=10.15.1.0/24
> leftnexthop=71.216.115.38
> leftid=@roseville.local
> # RSA 2192 bits roseville-fw Thu Jul 20 18:47:26 2006
> leftrsasigkey=0sAQPHZAiDY....
> #
> # Right security gateway, subnet behind it, next hop toward
> left.
> right=209.130.212.154
> rightsubnet=10.13.1.0/24
> rightnexthop=209.130.212.153
> rightid=@lakeville.local
> # RSA 2192 bits lakeville-fw Wed Jul 19 21:09:32 2006
> rightrsasigkey=0sAQNb9diw....
> #
> auto=start
>
More information about the Users
mailing list