[Openswan Users] Openswan IPSEC tunel established but it work from one side only
Willie Gillespie
wgillespie+openswan at es2eng.com
Fri Jan 7 14:28:52 EST 2011
Dario Garay wrote:
> And this is very strange.... the ping from 192.168.1.7 works whit ipsec service Stopped.
>
>
> [root at Georouter ~]# ipsec auto --down g2tog1
> [root at Georouter ~]# service ipsec stop
> ipsec_setup: Stopping Openswan IPsec...
> [root at Georouter ~]# ipsec setup --status
> IPsec stopped
> [root at Georouter ~]# ping 192.168.2.1
> PING 192.168.2.1 (192.168.2.1) 56(84) bytes of data.
> 64 bytes from 192.168.2.1: icmp_seq=1 ttl=253 time=5.98 ms
Hmm, are you sure that the IPsec tunnel is up when the service is
started? Do you see an "STATE_QUICK_R2: IPsec SA established" in your
log files (like /var/log/auth.log)?
More information about the Users
mailing list