[Openswan Users] a question about net-to-net connection

Fri Aug 14 08:18:18 EDT 2009

hi,all
I have done a net-to-net connection:
# basic configuration
config setup
        interfaces=%defaultroute
        klipsdebug=none
        plutodebug=none
conn tunnelipsec
        type=tunnel
        authby=secret
        left=192.168.1.2
        leftsubnet=10.69.1.0/24
        right=192.168.1.212
        rightsubnet=10.7.3.0/24
        esp=3des-md5-96
        keyexchange=ike
        pfs=no
        auto=start
after ipsec connection start ,I can ping a subnet node(10.7.3.1) on the other end from my local subnet(10.69.1.1),and see ESP packets moving back and forth between 192.168.1.2 and 192.168.1.212.
I can also ping a subnet node (10.7.3.1) ont the other end from my openswan gateway(192.168.1.2),seen icmp echo,reply,no ESP packets.
Is it correct?I think I can't ping 10.7.3.1 from 192.168.1.2.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20090814/f043939e/attachment.html