[Openswan Users] I can't ping windows computers

Juan j pitfloner at hotmail.com
Thu Oct 19 02:44:00 EDT 2006 

The only thing it sound extrange to me, it's I can ping a Linux Server.

This is the result of executing ipsec verify:

Checking your system to see if IPsec got installed and started correctly:
Version check and ipsec on-path                                 [OK]
Linux Openswan U2.4.4/K2.6.11.4-20a-smp (netkey)
Checking for IPsec support in kernel                            [OK]
Checking for RSA private key (/etc/ipsec.secrets)               [OK]
Checking that pluto is running                                  [OK]
Two or more interfaces found, checking IP forwarding            [OK]
Checking NAT and MASQUERADEing                                  [N/A]
Checking for 'ip' command                                       [OK]
Checking for 'iptables' command                                 [OK]
Checking for 'setkey' command for NETKEY IPsec stack support    [OK]

Opportunistic Encryption DNS checks:
   Looking for TXT in forward dns zone: fw02es                  [MISSING]
   Does the machine have at least one non-private address?      [OK]
   Looking for TXT in reverse dns zone: 43.108.125.217.in-addr.arpa.    
[MISSING]


>From: Paul Wouters <paul at xelerance.com>
>To: pitfloner <pitfloner at hotmail.com>
>CC: users at openswan.org
>Subject: Re: [Openswan Users] I can't ping windows computers
>Date: Thu, 19 Oct 2006 07:39:32 +0200 (CEST)
>
>On Thu, 19 Oct 2006, pitfloner wrote:
>
> > I'm using openswan 2.4.4 to connect our two headquarters with NETKEY by
> > net2net tunnel. After defining /etc/ipsec.conf and /etc/ipsec.secrets 
>and
> > turn up the service, the tunnel seems to works because I can ping to the
> > iface connected to my lan and a linux server located inside my lan.
> >
> > But I can't ping a Windows PC nor browsing my lan trough this tunnel.
>
>browsing and pinging are two different issues. pinging should work before
>you try to browse. Browsing might involve MTU issues and WINS issues.
>
>Run 'ipsec verify'
>
>You probably have no ip forwarding enabled. Or you are NAT'ing IPsec 
>packets.
>
>Paul
>--
>Building and integrating Virtual Private Networks with Openswan:
>http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155

_________________________________________________________________
Horóscopo, tarot, numerología... Escucha lo que te dicen los astros. 
http://astrocentro.msn.es/

More information about the Users mailing list