IPv6 readyNote: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

Re: [Users] Cant pass traffic through the VPN?!?!

From: Henry Spencer (henry_at_spsystems.net)
Date: Tue Mar 26 2002 - 07:11:10 CET

On Mon, 25 Mar 2002, Dayton Turner wrote:
> ...One machine (.64) is actually a vmware
> window :P but it has a real ip, and communicates perfectly fine
> normally, so I don't see this as an issue.

It might be. IPsec has a somewhat incestuous relationship with the
hardware drivers, and I don't know whether anybody's ever tried it under
VMware, which has to do some high and fancy fakery to give an imitation of
PC hardware.

> Now when I ping or telnet or whatever between them, no traffic makes it
> through. Tcpdump on either end verifies that the packets arent making
> it.

"tcpdump -i ipsec0" will help confirm that the packets are actually getting
into the IPsec machinery.

Given that, "ifconfig ipsec0" is of interest -- if its "dropped" count is
incrementing, then the problem is in IPsec. If not, then the packets are
getting lost somewhere after we process them, and it is almost certainly
not an IPsec problem.

                                                          Henry Spencer
                                                       henry_at_spsystems.net

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:46 CEST