[Openswan Users] Openswan ipsec is established but cant ping on either subnet

Sagar Thapa sagar at nt.com.np
Fri Aug 8 05:26:34 EDT 2008

Dear Paul,

The ipsec verify shows the following:

Checking your system to see if IPsec got installed and started correctly:
Version check and ipsec on-path                                 [OK]
Linux Openswan U2.4.7/K2.4.21-4.ELsmp (netkey)

Checking for IPsec support in kernel                            [OK]

NETKEY detected, testing for disabled ICMP send_redirects       [FAILED]
Please disable /proc/sys/net/ipv4/conf/*/send_redirects
or NETKEY will cause the sending of bogus ICMP redirects!

NETKEY detected, testing for disabled ICMP accept_redirects     [FAILED]
Please disable /proc/sys/net/ipv4/conf/*/accept_redirects
or NETKEY will accept bogus ICMP redirects!

Checking for RSA private key (/etc/ipsec.secrets)               [DISABLED]
ipsec showhostkey: no default key in "/etc/ipsec.secrets"

Checking that pluto is running                                  [OK]

Two or more interfaces found, checking IP forwarding            [OK]

Checking NAT and MASQUERADEing                                  [N/A]

Checking for 'ip' command                                       [OK]

Checking for 'iptables' command                                 [OK]

Opportunistic Encryption Support                                [DISABLED]


On Thu, Aug 7, 2008 at 7:59 PM, Paul Wouters <paul at xelerance.com> wrote:

> On Thu, 7 Aug 2008, Sagar Thapa wrote:
>  I have suffering from the same problem since last one week, i m able to
>> establish the ipsec but i cant ping on my leftsubnet.
>> what might be the possible reasons?
> What does ipsec verify say?
> Paul
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080808/ef7cbfbc/attachment.html 

More information about the Users mailing list