[Openswan Users] Ping Forwarding packet problem
pzlist at mp.pl
Fri Sep 1 06:12:37 EDT 2006
Is anybody who use 2.6.17 for openswan host to net configuration?
Any bug in kernel ?
how should looks ip xfrm policy? routing?
(I have one rule for ip xfrm policy, routing to destination_ip via my
ip xfrm monitor shows me
Unknown message: 00000096 0x0000001e 0x00000000
ip_contrack shows me connection as UNREPLIED
I cannot see packets in FORWARD chain ...
Thanks for any help
[pzlist pzlist mp.pl ] users-bounces at openswan.org napisa?(a):
> after upgrading from 2.4.32 to 2.6.17 my ipsec doesn't work longer
> When I try to ping remote host - I cannot see response (ipsec
> connection is established)
> my tcpdump is able to see icmp reply from remote host - (but not icmp
> trace on my router inform me the that ESP packets lease my network
> and responses (ESP) return to me
> my kernel settings:
> rp_filter = 0
> ip_forward = 1
> send_redirects = 0
> accept_redirects = 0
> what is wrong?
> Maybe someone can help me please....
> Users at openswan.org
> Building and Integrating Virtual Private Networks with Openswan:
More information about the Users