[Openswan Users] Hub and Spoke issue
Neal Murphy
neal.p.murphy at alum.wpi.edu
Thu Jul 3 11:56:17 EDT 2014
On Thursday, July 03, 2014 08:44:16 AM Steven Tye wrote:
> I may look into again later but no I cannot ping my clients. However, my
> clients are able to access the targeted far server to send and receive
> email so operationally the system is working.
>
> Thanks for the assist.
>
> -----Original Message-----
> From: Nick Howitt [mailto:nick at howitts.co.uk]
> Sent: Thursday, July 3, 2014 4:02 AM
> To: Steven Tye
> Cc: users at lists.openswan.org
> Subject: RE: [Openswan Users] Hub and Spoke issue
>
> I'm not sure where you've left this. Are you able to ping your clients yet?
> If not you may want to look at the nat part of the firewall (sudo iptables
> -L -n -v -t nat), but this is really an OpenVPN question now.
>
As an aside, I've found that packets' source address can matter when OpenSwan
runs on a system with more than one interface. Specifically, on such a server
I have to tell ping (and other programs) which address to use as the source
before OpenSwan will send the packets through the firewall.
More information about the Users
mailing list