[Openswan Users] Azure and Openswan - traffic routing not working
Damir Reic
dreic at email.t-com.hr
Mon May 12 19:32:33 EDT 2014
Hi,
Since Azure has limitation of only 1VPN gateway i created Centos VM inside
it and i sucessfully established VPN with Cisco 1800 router. Now i can ping
both sides of the tunnel but traffic is not going trough when i want to ping
something from Azure LAN to other side of VPN. I don't have any iptables
rules and ipfowarding is enabled. Port 4500 and 500 are forwarded to the
Centos VM.
This is my conf:
version 2.0 # conforms to second version of ipsec.conf specification
# basic configuration
config setup
# Debug-logging controls: "none" for (almost) none, "all" for lots.
# klipsdebug=none
# plutodebug="control parsing"
# For Red Hat Enterprise Linux and Fedora, leave protostack=netkey
protostack=netkey
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
oe=off
# Enable this if you see "failed to find any available worker"
# nhelpers=0
#You may put your configuration (.conf) file in the "/etc/ipsec.d/" and
uncomment this.
#include /etc/ipsec.d/*.conf
conn test
auto=start
type=tunnel
authby=secret
keyexchange=ike
ike=3des-sha1;modp1024
ikelifetime=8h
esp=3des-sha1;modp1024
keylife=1h
pfs=no
###our gateway
left=172.17.1.19
leftnexthop=%defaultroute
leftid=1.1.1.1
leftsubnet=172.17.1.0/25
###remote peer
right=2.2.2.2
rightsubnet=192.168.38.0/24
Thanks!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20140513/d16c7e5a/attachment.html>
More information about the Users
mailing list