[Openswan Users] Ping Problem
petermcgill at goco.net
Mon May 26 10:43:42 EDT 2008
Any hosts on the local lan, which you want to communicate with the remote lan, need a route to the remote lan which leads to local
ipsec server. This can be accomplished a number of ways.
1) You can set the ipsec server to the default route for each host which needs to access the remote subnet.
Each host in 192.168.100.0/24 has 192.168.100.254 as it's default gateway.
2) You can add a route on the regular gateway (normal default route destination), which routes packets destined for the remote lan
to the local ipsec server.
Assuming the normal internet gateway for 192.168.100.0/24 is 192.168.100.253, you can add a route on 192.168.100.253 as follows (net
192.168.0.0/24 gw 192.168.100.254) and continue to use 192.168.100.253 as the default route for 192.168.100.0/24.
Either way for traffic to pass between the two lan's you will need to route the traffic from the local lan for the remote lan to the
local ipsec server. You do not have to specify any special routing on the ipsec server however, this is automatic. Both sides of the
tunnel need to be setup this way.
IT Systems Analyst
Gra Ham Energy Limited
From: users-bounces at openswan.org [mailto:users-bounces at openswan.org] On Behalf Of Chandrakant Solanki
Sent: May 25, 2008 11:40 PM
To: users at openswan.org
Subject: [Openswan Users] Ping Problem
192.168.100.0/24 ====== 126.96.36.199 ------ 188.8.131.52 <=========> 184.108.40.206 --------- 220.127.116.11 ======
Ipsec Server IP: 192.168.100.254
Ipsec Server IP: 192.168.0.254
This is my network scenario, I have setup my ipsec with 4 pc's network.. and implemented IPSec successfully. I am pining
only those PC who has local gateway 192.168.100.254 or 192.168.0.254 on both side.
My question is that ....
Is it necessary to set gateway [192.168.100.254] for all the pc who is belongs to 192.168.100.0/24 network or it is not
necessary on both side.
Help me out.
More information about the Users