Note: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

[Users] Problem with subnet-to-subnet configuration (host-to-subnet works)

From: Mimmus (dviggiani_at_tiscalinet.it)
Date: Mon May 06 2002 - 12:24:48 CEST

Next message: Harry Brueckner: "Re: [Users] Several users configuration"
Previous message: Andreas Steffen: "Re: [Users] Several users configuration"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi list,
in my attemts to test interoperability between Checkpoint FW-1 NG FP1 and
FreeS/WAN 1.95, I got good results with following configuration:

Host1==========FW-1------------------FreeS/WAN Laptop
local LAN untrusted net
(private)

where FW-1 is normally doing hiding-nat. I can ping Host1 from FreeS/WAN
Laptop and I can see encrypt/decrypt traffic in FW-1 logs.
With following configuration:
Host1==========FW-1------------------FreeS/WAN=========Host2
local LAN1 untrusted net
local LAN2
(private)
(private)
where FreeS/WAN gateway does IP Masquerading (NAT), insted I'm unable to get
any result. I'm using the same ipsec.conf of previous topology, only
uncommenting 'rightsubnet=local-LAN2' parameter.

I already tested pinging without encryption from Host2 to external interface
of FW-1 and from Host1 to external interface of FreeS/WAN and it works.
Where can I indagate furtherly?

Domenico Viggiani

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

Next message: Harry Brueckner: "Re: [Users] Several users configuration"
Previous message: Andreas Steffen: "Re: [Users] Several users configuration"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:57 CEST