[Openswan Users] Problem Accessing Outside Network
conn intel
connintel at gmail.com
Tue Oct 3 10:40:06 EDT 2006
Hello friends,
I am using Linux Openswan Ucvs2006Sep26_01:19:01/K2.4.4 (klips). My problem
is after getting up the tunnel successfully the ping response is very very
slow while trying to ping other network which are connected to "
10.10.136.110". Few of the times i am getting warning like RESOURCE NOT
AVAILABLE and still trying few times i get the ping. So is there any problem
with the route entries ?
Also after doing ipsec auto --down i2i , if i ping from 111.111.11.11 to
222.222.12.12 the tunnel automatically starts.. for that what i need to do
please ?
Here is the OUTPUT of ROUTE , IPSEC.CONF and IFCONFIG.
Kindly know if you still need more information.
Thank You.
Have a Nice time and good day ahead..
Ankur.
ROUTE OUTPUT BEFORE IPSEC START ::
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
10.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 eth0
111.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 eth1
0.0.0.0 10.10.136.110 0.0.0.0 UG 0 0 0 eth0
ROUTE OUTPUT AFTER IPSEC START ::
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
222.0.0.0 10.10.136.110 255.0.0.0 UG 0 0 0
ipsec0
10.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 eth0
10.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0
ipsec0
111.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 eth1
0.0.0.0 10.10.136.110 128.0.0.0 UG 0 0 0
ipsec0
128.0.0.0 10.10.136.110 128.0.0.0 UG 0 0 0
ipsec0
0.0.0.0 10.10.136.110 0.0.0.0 UG 0 0 0 eth0
IPSEC.CONF on 10.10.136.88 :::
version 2.0
config setup
interfaces=%defaultroute
klipsdebug=none
plutodebug=none
nat_traversal=yes
virtual_private=%v4:
10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16,%v4:!10.0.0.0/255.0.0.0,%v4:!10.0.0.0/255.0.0.0:!222.0.0.0/255.0.0.0
conn %default
keyingtries=0
conn i2i
left=10.10.136.88
leftnexthop=%defaultroute
leftsubnet=111.0.0.0/255.0.0.0
right=10.10.136.105
rightsubnet=222.0.0.0/255.0.0.0
rightnexthop=%defaultroute
authby=secret
auto=start
IFCONFIG ::
eth0 Link encap:Ethernet HWaddr 00:00:E8:11:80:FA
inet addr:10.10.136.88 Bcast:10.255.255.255 Mask:255.0.0.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2791218 errors:0 dropped:2031616 overruns:0 frame:0
TX packets:608026 errors:26 dropped:0 overruns:0 carrier:25
collisions:0 txqueuelen:1000
RX bytes:252209056 (240.5 MiB) TX bytes:26674372 (25.4 MiB)
Interrupt:209 Base address:0xb800
eth1 Link encap:Ethernet HWaddr 00:0B:2B:0F:60:8C
inet addr:111.111.11.14 Bcast:111.255.255.255 Mask:255.0.0.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2778244 errors:0 dropped:0 overruns:0 frame:0
TX packets:209 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:246139968 (234.7 MiB) TX bytes:20330 (19.8 KiB)
Interrupt:217 Base address:0xb400
ipsec0 Link encap:Ethernet HWaddr 00:00:E8:11:80:FA
inet addr:10.10.136.88 Mask:255.0.0.0
UP RUNNING NOARP MTU:16260 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:2055 errors:0 dropped:1570 overruns:0 carrier:0
collisions:0 txqueuelen:10
RX bytes:0 (0.0 b) TX bytes:448497 (437.9 KiB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:1851 errors:0 dropped:0 overruns:0 frame:0
TX packets:1851 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:199240 (194.5 KiB) TX bytes:199240 (194.5 KiB)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20061003/8a525d4e/attachment.html
More information about the Users
mailing list