[Openswan Users] Routing problem in Ipsec ?

Paul Wouters paul at xelerance.com
Fri May 6 10:16:08 EDT 2011

On Fri, 6 May 2011, SCHNEIDER Benoit wrote:

> At my job we have a VPN's server who have many VPN tunnel up (near 300)
> I have a problem with on of them.
> The VPN is up, but when I'm trying to ping a IP adresse who is bihind the tunnel the ping packet go outsid of the
> tunnel. He look to don't take the right network intephace
> Did they have a way to see all routing table who work in Ipsec, and fixe it ?

I am not sure what you mean. For KLIPS, you can use "ipsec eroute" and "route -n" to
check. With NETKEY you have to dig through "ip xfrm state" (and no routes are used)

You probably have a typo in the address range and it matches no policies (and when
using KLIPS, the typoed route was added) ?


More information about the Users mailing list