From: Jens Kammermeier (kammermeier_at_web.de)
Date: Mon Aug 19 2002 - 06:19:50 CEST
Hi,
after reading all this manuals, mailing lists, howtos and trying to
understand how freeswan functions, I give up and hope somebody out there can
help me.
I wanted to build a tunnel between two LANs to have a VPN. Both sides are
connected to the Internet by DSL- Modems (ZyXEL
Prestige 642ME-I) which NAT my Networks with official IPs. Behind each
stands a firewall (SuSE Linux 8.0, Kernel 2.4.18, SuSEfirewall2) which have
masquerading on. Somewhere I read that it is possible to make this tunnel
and indeed I can establish it (this is what 'ipsec look' tells me), but all
the pings from computers of one subnet to computers in the other are lost,
while all other pings to the world outside work fine. So I think routing is
good.
If I run tcpdump on the interface ipsec0 while pinging in the tunnel it
says:
04:50:41.878167 unkown ip 0
04:50:43.374537 unkown ip 0
04:50:44.276012 unkown ip 0
and so on.
With ethereal I found that the IP-header is missing. Thus I conclude somone
is cutting it and nobody puts a new one on it, or not? How can I avoid this?
Can anybody help me? Or do you need more information? Or is it totally
impossible what I want?
Thanks
Jens
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.4 : Mon Aug 19 2002 - 08:19:45 CEST