[Openswan Users] route for remote subnet on site to site VPN not being added
Paul Wouters
paul at xelerance.com
Sun Oct 24 10:47:09 EDT 2010
On Sun, 24 Oct 2010, matt.bazan at comcast.net wrote:
> my tunnel is coming up based upon following log details:
>
> Oct 23 20:44:35 ubuntuFW pluto[28333]: "SF-To-Trenton" #88: the peer proposed: 192.168.0.0/24:0/0 -> 192.168.10.0/24:0/0
> Oct 23 20:44:35 ubuntuFW pluto[28333]: "SF-To-Trenton" #89: STATE_QUICK_R2: IPsec SA established tunnel mode {ESP=>0x9c5becf1 <0xf3bf5444 xfrm=AES_128-HMAC_SHA1 NATOA=none NATD=none DPD=none}
> however, when looking at my routing table the route for the remote subnet (192.168.10.0) is not being added. the same is true on the right hand side.
If you use netkey, that's normal. The netkey stack picks packets up deep inside the linux
packet pie with special hooks. Where as klips gets the packets via routing.
Paul
More information about the Users
mailing list