[Openswan Users] Ping to subnets dont work

Sebastian Rumpf sebastian.rumpf at brandl-systemhaus.de
Fri Feb 11 07:27:49 EST 2011 

Thank you now it works ...

OMG wasted 3 Days with searchin in google if anyone has the same error -.-


Mit freundlichen Grüßen
Sebastian Rumpf
[Beschreibung: cid:image001.jpg at 01C81483.061EC410]
Tel.:    +49 (0)9421-33035 0
Fax.:    +49 (0)9421-33035 84
Mobil:    +49 (0)171-1229543
Am Hagen 10, D-94315 Straubing
sebastian.rumpf at brandl-systemhaus.de<mailto:sebastian.rumpf at brandl-systemhaus.de>

Von: Curu Wong [mailto:prinbra at gmail.com]
Gesendet: Freitag, 11. Februar 2011 13:19
An: Sebastian Rumpf
Betreff: Re: [Openswan Users] Ping to subnets dont work

Maybe you should add:

leftsourceip=192.168.5.16
rightsourceip=192.168.1.99


2011/2/11 Sebastian Rumpf <sebastian.rumpf at brandl-systemhaus.de<mailto:sebastian.rumpf at brandl-systemhaus.de>>
Hi @ all

I have a Gateway to Gateway setup (to test) and cant ping form the GW's tot he subnets.

                                         10.0.0.1                       10.0.0.2
                                        --------------                ---------------
192.168.1.0/24------|Gateway1|=====|GateWay2|------192.168.5.0/24<http://192.168.1.0/24------%7CGateway1%7C=====%7CGateWay2%7C------192.168.5.0/24>
                                       192.168.1.99               192.168.5.16


Both of them are Debian Systems (100% Identical [VMware Clone])

Here's what the config looks like :


conn vpn
        type=tunnel
        left=10.0.0.2
        leftsubnet=192.168.5.0/24<http://192.168.5.0/24>
        leftnexthop=10.0.0.1
        right=10.0.0.1
        rightsubnet=192.168.1.0/24<http://192.168.1.0/24>
        rightnexthop=10.0.0.2
        keyexchange=ike
        auth=esp
        auto=add
        authby=secret


My problem is, that I cant ping from GW1 to 192.168.5.X (I know the machine exists) but I can ping the other Gateway (192.168.5.16)
When I try pinging from Gw2 to 192.168.1.X it's the same thing.

Netstat -nr tells me this:

Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
192.168.5.0     0.0.0.0         255.255.255.0   U         0 0          0 eth0
192.168.1.0     0.0.0.0         255.255.255.0   U         0 0          0 eth1
10.0.0.0        0.0.0.0         255.255.0.0     U         0 0          0 eth1
0.0.0.0         192.168.5.1     0.0.0.0         UG        0 0          0 eth0



##################  GW2  ###############

Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
192.168.5.0     0.0.0.0         255.255.255.0   U         0 0          0 eth1
192.168.1.0     0.0.0.0         255.255.255.0   U         0 0          0 eth0
10.0.0.0        0.0.0.0         255.255.0.0     U         0 0          0 eth1
0.0.0.0         192.168.1.6     0.0.0.0         UG        0 0          0 eth0




Could anyone of you please be so kind and help me ??

_______________________________________________
Users at openswan.org<mailto:Users at openswan.org>
http://lists.openswan.org/mailman/listinfo/users
Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
Building and Integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20110211/aa87b12e/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 4567 bytes
Desc: image001.jpg
Url : http://lists.openswan.org/pipermail/users/attachments/20110211/aa87b12e/attachment-0001.jpg

More information about the Users mailing list