[Openswan Users] roadwarrior issues
Paul Wouters
paul at xelerance.com
Tue May 12 13:47:28 EDT 2009
On Tue, 12 May 2009, Dan Meiron wrote:
> using Openswan 2.4.12 (Ubuntu 9.04). I have the following experience. On
> some networks the SA negotiation succeeds just fine but I cannot ping
> any hosts. On other networks it succeeds just fine and everything works.
> # road warrior connection to meiron office netgear router
> conn meiron-office
> right=my netgear box
> rightid=@meiron-office.org
> rightsubnet=10.128.205.0/24
> left=%defaultroute
> leftid=@meiron-laptop.org
> leftsubnet=10.10.11.0/24
> leftsourceip=10.10.11.1
> authby=secret
> aggrmode=yes
> ike="3des-sha1-modp1024"
> esp="3des-sha1"
> dpddelay=30
> dpdtimeout=120
> dpdaction=restart
> auto=add
did you forget rightsourceip= ?
run ipsec verify, and check NAT rules.
Paul
More information about the Users
mailing list