[Openswan Users] Creating Win XP vpn connection

peters at exemplar-associates.com peters at exemplar-associates.com
Mon May 15 17:34:26 CEST 2006


On Monday, 15 May 2006 16:36:47, Jacco de Leeuw wrote:

> Peter wrote:
>=20
> > Windows says the connection is up and a little icon appears in the
> > corner.
> >=20
> > When I view the connection properties it gives me the sort of info
> > I was expecting. The ip address shown is the secure one but I can't
> > ping it. Should I be able to?
>=20
> Yes, you should always be able to ping IP addresses, unless you
> are specifically firewalling them. Are you?

There shouldn't be a firewall in the connection but I wonder if
the packets are being blocked because they are on the 192.168.0
network while the real network is 192.168.1  ?

> Is there anthing in your logs?

There isn't much in the auth.log but this is from 2 of the other
logs:

tail /var/log/messages
May 15 16:45:01 localhost kernel: =5B4302269.097000=5D Unknown =
InputIN=3Dppp0 OUT=3D
MAC=3D SRC=3D192.168.0.1 DST=3D192.168.0.Z LEN=3D48 TOS=3D0x00 PREC=3D0x00
TTL=3D128 ID=3D51026 DF PROTO=3DTCP SPT=3D2945 DPT=3D80 WINDOW=3D16384 =
RES=3D0x00 SYN URGP=3D0

May 15 16:45:08 localhost pppd=5B9434=5D: LCP terminated by peer =
(=5EF_U/=5E=40<M-Mt=5E=40=5E=40=5E=40=5E=40)

May 15 16:45:08 localhost pppd=5B9434=5D: Connect time 6.6 minutes.
May 15 16:45:08 localhost pppd=5B9434=5D: Sent 0 bytes, received 24684 =
bytes.
May 15 16:45:08 localhost pppd=5B9434=5D: Terminating on signal 15
May 15 16:45:08 localhost pppd=5B9434=5D: Modem hangup
May 15 16:45:08 localhost pppd=5B9434=5D: Connection terminated.
May 15 16:45:09 localhost pppd=5B9434=5D: Exit.

May 15 16:46:10 localhost kernel: =5B4302338.713000=5D Inbound IN=3Deth0 =
OUT=3D
MAC=3D00:X:X:X:X:X:X:X:X:X SRC=3D192.168.1.B DST=3D192.168.1.A LEN=3D198
TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D50757 DF PROTO=3DUDP SPT=3D138 =
DPT=3D138 LEN=3D178

May 15 16:58:10 localhost kernel: =5B4303058.748000=5D Inbound IN=3Deth0 =
OUT=3D
MAC=3D00:X:X:X:X:X:X:X:X:X SRC=3D192.168.1.B DST=3D192.168.1.A LEN=3D198
TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D52192 DF PROTO=3DUDP SPT=3D138 =
DPT=3D138 LEN=3D178

where:
Z=3D virtual ip of ipsec box
A=3D ip of ipsec box
B=3D ip of our existing server
X=3D hidden MAC address

tail /var/log/syslog
May 15 17:10:10 localhost kernel: =5B4303778.842000=5D Inbound IN=3Deth0 =
OUT=3D
MAC=3D00:X:X:X:X:X:X:X:X:X SRC=3D192.168.1.B DST=3D192.168.1.A LEN=3D198
TOS=3D0x00 PREC=3D0x00 TTL=3D64 ID=3D55000 DF PROTO=3DUDP SPT=3D138 =
DPT=3D138 LEN=3D178


 Can you check with a network sniffer where those ICMP packets
> are going?
>=20
> > Also I can still ping the normal
> > ip addr of the Linux server. I am not sure that is right.
>=20
> This is normal. Packets to all other IP address should be routed
> through the VPN.

That probably explains why my real connections through the adsl
box drop-out when the ipsec connection is up.

Peter



More information about the Users mailing list