Hi List,
I assume my tunnel is correct established (against a Checkpoint FW-1 using
preshared secrets).
## LOG-Message: ##
May 30 16:18:27 Ribnitz-Webserver ipsec__plutorun: 104 "siv" #1:
STATE_MAIN_I1: initiate
May 30 16:18:27 Ribnitz-Webserver ipsec__plutorun: 106 "siv" #1:
STATE_MAIN_I2: from STATE_MAIN_I1; sent MI2, expecting MR2
May 30 16:18:27 Ribnitz-Webserver ipsec__plutorun: 108 "siv" #1:
STATE_MAIN_I3: from STATE_MAIN_I2; sent MI3, expecting MR3
May 30 16:18:27 Ribnitz-Webserver ipsec__plutorun: 004 "siv" #1:
STATE_MAIN_I4: ISAKMP SA established
May 30 16:18:27 Ribnitz-Webserver ipsec__plutorun: 112 "siv" #2:
STATE_QUICK_I1: initiate
May 30 16:18:27 Ribnitz-Webserver ipsec__plutorun: 004 "siv" #2:
STATE_QUICK_I2: sent QI2, IPsec SA established
My Routing-Table looks like:
62.159.207.32 0.0.0.0 255.255.255.248 U 0 0 0 eth1
62.159.207.32 0.0.0.0 255.255.255.248 U 0 0 0
ipsec0
194.123.138.0 192.9.222.34 255.255.255.0 UG 0 0 0 eth0
192.9.220.0 192.9.222.31 255.255.255.0 UG 0 0 0 eth0
192.9.222.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
172.23.0.0 62.159.207.33 255.255.0.0 UG 0 0 0
ipsec0
0.0.0.0 62.159.207.33 0.0.0.0 UG 0 0 0 eth1
Some notes:
eth1 = my external interface, official IP
62.159.207.33 my dsl-router
172.23.0.0/16 partners lan via vpn
192.9.22*.0/24 my local lan
To my opinion the tunnel is established correctly, but something is weird.
A ping to e.g. 172.23.0.100 causes traffic on the ipsec0-Interface (tcpdump
proven).
On partners side there are a lot more vpn working correctly. ping traffic is
allowed.
Could by my routing wrong ?
Thanks for your help !!
Ronny
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:20:08 CEST