[Openswan Users] Openswan IPSEC tunel established but it work from one side only
Willie Gillespie
wgillespie+openswan at es2eng.com
Fri Jan 7 13:17:43 EST 2011
Dario Garay wrote:
> Question: what I have to check in Iptables or rc.firewall?
Since you noted that the IPsec tunnel is up and working, at this point
you just need to make sure that you can forward packets to and from your
subnet.
A few tests you can try:
Ping from gateway to your VPN router
Test 1) ping from 192.168.1.7 to 192.168.2.1
Test 2) ping from 192.168.2.1 to 192.168.1.7
Ping from a subnet computer to the routers
Test 3) ping from 192.168.1.0/24 subnet to 192.168.2.1
Test 4) ping from 192.168.2.0/24 subnet to 192.168.1.7
Ping from subnet to subnet
Test 5) ping from 192.168.1.0/24 subnet to 192.168.2.0/24 subnet
Test 6) ping from 192.168.2.0/24 subnet to 192.168.1.0/24 subnet
That will help you narrow down what works and what doesn't.
More information about the Users
mailing list