[Openswan Users] Openswan+NetScreen - Phase1+Phase2 Ok - No route - Traffic filtered in ISP
Alejandro Alfonso
alejandro.alfonso at telecyl.com
Wed Jan 30 14:18:52 EST 2008
Thanks for the quick answer,
but 192.168.153.1 is a host of our ISP provider
Ping and traceroute stops in this hosts because we're recuesting a
172.xxx.xxx.xxx without IPSec encapsulation in a public network
Best Regards!
>
>> >From 192.168.153.1 icmp_seq=2 Packet filtered
>>
>> As you see... its no using IPSec tunnel, and ISP drop ClassB traffic
>>
>
> It would use it, but after the point where either tcpdump or iptables
> can do anything. Drop the filter and check that your tunnel works.
> Easiest is to see incoming encrypted and decrypted pings arriving,
> because netkey won't allow you to see encrypted outgoing packets.
>
> Paul
>
>
--
------------------------------------------------------------------------
* Alejandro Alfonso Fernandez
Responsable Área Corporativa * alejandro.alfonso at telecyl.com
<mailto:alejandro.alfonso at telecyl.com>
http://www.telecyl.com/
------------------------------------------------------------------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080130/38aac033/attachment.html
More information about the Users
mailing list