[Openswan Users] Can't Ping across VPN
Paul Wouters
paul at xelerance.com
Thu May 4 17:53:51 CEST 2006
On Thu, 4 May 2006, James House wrote:
> I'm trying to setup a net-net vpn with a friend. We live in the same
> apartment complex and both have cable modems. We both have Linux machines as
> our firewall/gateway. Mine is FC5 and his is Kubuntu. Here's the result of
> "ipsec auto -status"
run ipsec verify
> 000 #14: "net-to-net":500 STATE_QUICK_I2 (sent QI2, IPsec SA established);
> EVENT_SA_REPLACE in 12481s; newest IPSEC; eroute owner
Looks established, but the ISP might be filtering IPsec packets.
> It looks like the VPN is up, but we can't ping anything on the other side.
> We've both looked everywhere for something that addresses this issue, but
> can't find any help. Could you help us?
check forwarding, rp_filter, firewall, nat rules and if that all didnt help
try using forceencaps=yes on both ends.
Paul
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list