[Openswan Users] problem with openswan established but no ping
Walter Willis
walterwn at gmail.com
Sun Nov 4 16:31:44 EST 2007
the other problem with openswan 2.4.9 i am install and configured and and
established but no ping
ipsec.conf
config setup
interfaces=%defaultroute
nat_traversal=yes
#uniqueids=yes
klipsdebug=all
plutodebug=none
#virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16
conn %default
keyingtries=3
compress=no
disablearrivalcheck=no
ikelifetime=20m
keylife=60m
rekey=no
authby=rsasig
#authby=secret|rsasig
leftrsasigkey=%cert
rightrsasigkey=%cert
conn chiclayo-lima
also=config-base
right=y.y.y.y # Remote vitals
rightsubnet=192.168.100.0/24 #
rightid=@y.y.y.y
rightrsasigkey=0sAQ...
rightnexthop=y.y.y.w # correct in many situations
auto=start
conn config-base
keyingtries=1
#type=tunnel
authby=rsasig
rekey=yes
left=x.x.x.x # Local vitals
leftsubnet=192.168.80.0/24
leftid=@x.x.x.x
leftrsasigkey=0sAQ...
leftnexthop=x.x.x.w
and run and established but look ipsec auto --status
000 #3: "chiclayo-lima":500 STATE_MAIN_I4 (ISAKMP SA established);
EVENT_SA_REPLACE in 163s; newest ISAKMP; lastdpd=-1s(seq in:0 out:0)
000 #2: "chiclayo-lima":500 STATE_QUICK_I2 (sent QI2, IPsec SA established);
EVENT_SA_REPLACE in 1815s; newest IPSEC; eroute owner
000 #2: "chiclayo-lima" esp.bad07997 at 200.31.123.210 esp.47b5bb80 at x.x.x.x
tun.0 at y.y.y.y tun.0 at x.x.x.x
000 #1: "chiclayo-lima":500 STATE_MAIN_I4 (ISAKMP SA established);
EVENT_SA_EXPIRE in 484s; lastdpd=-1s(seq in:0 out:0)
what is the problem ???
firewall?? bad config ???
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20071104/75575c2a/attachment.html
More information about the Users
mailing list