[Openswan Users] Why ping stop to work when I stop ipsec service?

[Michael Furman]

I have started to use Openswan on Centos6 and was able to configure Host to Host using the following document: 

https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Security_Guide/Host-To-Host_VPN_Using_Openswan.html


My configuration is following (on both sides):


        conn tunnel1
        left=x.x.0.2
        leftrsasigkey=0sA…iww==
        right=x.x.0.1
        rightrsasigkey=0sA…qrQ==
        authby=rsasig
        # load and initiate automatically
        auto=start
        

    
I have enabled tunnel using the following command:

    ipsec auto --add tunnel1           
    ipsec auto --up tunnel1


Why when I stop ipsec service on both sides ping from server to server stop to work on both sides?
I need to restart both servers to allow to ping to work again.






 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20151012/3d820b9c/attachment.html>