[Openswan Users] PING

Renaldo Rocha renaldo.rocha at gmail.com
Tue Jun 21 09:58:24 EDT 2011 

Hello, thanks for the fast answer.

I tried putting leftsourceip=192.168.11.254 and rightsourceip=10.5.1.250 and I
didn't have result.

With this setting, some need to do NAT?

PS: I'm testing the ping directly from the VPN server (openswan).

2011/6/21 Nick Howitt <n1ck.h0w1tt at gmail.com>

> Renaldo,
>
> Add leftsourceip=192.168.11.254 to your ipsec.conf.
>
> Regards,
>
> Nick
>
>
> Quoting "Renaldo Rocha" <renaldo.rocha at gmail.com>:
>
>  Hello everybody,
>>
>> I'm trying to connect to a VPN (CISCO) for use of some services.
>> So far so good.
>>  1) The connection is established;
>> 2) Since the right side of the VPN (CISCO) can ping my internal IP which
>> is
>> 192.168.11.254;
>>
>> The problem is that I can't ping in the left side of the VPN (Openswan) to
>> the right VPN(CISCO), in which IP is 10.5.1.250.
>>
>> How could I solve this problem?
>>
>> PS: I'm going crazy with this.
>>
>> My ipsec.conf -----------------
>>
>> conn XXXXXX
>>        type=tunnel
>>        authby=secret
>>        #
>>        left=190.128.137.X
>>        leftsubnet=192.168.11.0/24
>>        leftnexthop=%defaultroute
>>        #
>>        right=190.128.229.X
>>        rightsubnet=10.5.1.0/24
>>        rightnexthop=%defaultroute
>>        #
>>        auth=esp
>>        ike=aes256-md5
>>        esp=aes256-md5
>>        keyexchange=ike
>>        pfs=yes
>>        #
>>        auto=start
>> ------------------------------
>>
>> My ifconfig ------------------
>>
>>
>> eth0      Link encap:Ethernet  HWaddr 90:E6:BA:D6:08:DB
>>          inet addr:192.168.1.254  Bcast:192.168.1.255  Mask:255.255.255.0
>>          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>>          RX packets:1282641 errors:0 dropped:0 overruns:0 frame:0
>>          TX packets:2007304 errors:0 dropped:0 overruns:0 carrier:0
>>          collisions:0 txqueuelen:1000
>>          RX bytes:179748133 (171.4 Mb)  TX bytes:2494295896 (2378.7 Mb)
>>          Interrupt:27 Base address:0x8000
>>
>> eth1      Link encap:Ethernet  HWaddr 00:04:75:DF:47:A7
>>          inet addr:190.128.137.X  Bcast:190.128.137.7
>>  Mask:255.255.255.252
>>          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>>          RX packets:1914556 errors:0 dropped:0 overruns:1 frame:0
>>          TX packets:1535461 errors:0 dropped:0 overruns:0 carrier:0
>>          collisions:0 txqueuelen:1000
>>          RX bytes:2257486193 (2152.9 Mb)  TX bytes:337062517 (321.4 Mb)
>>          Interrupt:16 Base address:0xcc00
>>
>> eth1:0    Link encap:Ethernet  HWaddr 00:04:75:DF:47:A7
>>          inet addr:192.168.11.0  Bcast:192.168.11.255  Mask:255.255.255.0
>>          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>>          Interrupt:16 Base address:0xcc00
>>
>> lo        Link encap:Local Loopback
>>          inet addr:127.0.0.1  Mask:255.0.0.0
>>          UP LOOPBACK RUNNING  MTU:16436  Metric:1
>>          RX packets:150661 errors:0 dropped:0 overruns:0 frame:0
>>          TX packets:150661 errors:0 dropped:0 overruns:0 carrier:0
>>          collisions:0 txqueuelen:0
>>          RX bytes:113297829 (108.0 Mb)  TX bytes:113297829 (108.0 Mb)
>>
>> ------------------------------**--------------------
>>
>> My ipsec auto --status ----------------------
>>
>> 000 #49: "XXXXXX":500 STATE_MAIN_I4 (ISAKMP SA established);
>> EVENT_SA_REPLACE in 1651s; newest ISAKMP; lastdpd=-1s(seq in:0 out:0);
>> idle;
>> import:admin initiate
>> 000
>>
>> ------------------------------**--------------------
>>
>> --
>> Ass..: Renaldo Rocha
>> msn..: renaldo.rocha at gmail.com
>> skype: renaldo.rocha
>>
>>
>


-- 
Ass..: Renaldo Rocha
msn..: renaldo.rocha at gmail.com
skype: renaldo.rocha
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20110621/aa868bf8/attachment-0001.html

More information about the Users mailing list