[Openswan Users] NEKEY 2.6.18 subnet2subnet problem
Adrian Gruntkowski
adrian at ima.pl
Sun Jun 17 17:16:54 EDT 2007
> On Sun, 17 Jun 2007, Adrian Gruntkowski wrote:
>> >> Connection is established succesfully. However when I try to
>> >> ping host on the remote host the router one hop after the server
>> >> returns network unreachable message.
>> >> What I've noticed is that the packets are not sent through
>> >> the tunnel but directly through public interface
>> >> (I see attempts to send icmp echo to 10.0.1.X on public interface
>> >> eth0).
>> >>
>> >> There's following entry in routing table after establishing connection:
>> >>
>> >> 10.0.1.0/24 via 12.34.56.97 dev eth0
>>
>> > That shouldn't matter for netkey.
>>
>> > Try lowering the mtu to 1400?
>>
>> > Paul
>>
>> Do you mean setting it in l2tpd? I think that this particular tunnel doesn't
>> use l2tp... ?
> Nope, I meant the mtu on the external interface of the ipsec/l2tp server.
I have set mtu of external interface to 1400 (it was 1500). Effect is still the same -
packet doesn't go through tunnel, it's routed directly. Any ideas? I'm going nuts :(
Adrian
More information about the Users
mailing list