From: l_amit_at_netvision.net.il
Date: Tue Aug 20 2002 - 17:37:30 CEST
SPAM: -------------------- Start SpamAssassin results ----------------------
SPAM: This mail is probably spam. The original message has been altered
SPAM: so you can recognise or block similar unwanted mail in future.
SPAM: See http://spamassassin.org/tag/ for more details.
SPAM:
SPAM: Content analysis details: (5 hits, 5 required)
SPAM: FROM_NAME_NO_SPACES (-0.1 points) From: no spaces in name
SPAM: X_EM2.31PRESENT (1.3 points) Found a X-EM-Version header
SPAM: X_EM_REGISTRATION (1.2 points) Found a X-EM-Registration header
SPAM: FROM_NAME_EQ_FROM_ADDR (2.6 points) 'From:' address also used as sender's real name
SPAM:
SPAM: -------------------- End of SpamAssassin results ---------------------
Hi,
I'm trying to configure net-2-net ipsec for the following:
|192.168.9.2
| |192.168.9.1
| | |172.29.134.163=ipsec0
| | | |172.29.134.179
| | | | |192.168.2.2
| | | | | |192.168.2.1=ipsec0
---- --------------- -------------- --------
| 1 |---| 2 |---------| 3 |---------| 4 |
----- ---------------- --------------- ---------
follows the ipsec.conf that I use,
I can't ping from machine #1 (192.168.9.2) to machine #4 (192.168.2.1) and
vice versa.
I'll appreciate any help.
Thanks,
Amit.
# basic configuration
config setup
interfaces="ipsec0=eth0"
klipsdebug=no
plutodebug=no
plutoload=%search
plutostart=%search
# defaults that apply to all connection descriptions
conn %default
# How persistent to be in (re)keying negotiations (0 means very).
keyingtries=0
# How to authenticate gatways
authby=rsasig
# VPN connection for head office and branch office
conn head-branch
# identity we use in authentication exchanges
leftrsasigkey=0sAQOJetNwLtfSeaxFeyqBSAvKCwf2Fu2ow0cg/4v3LcrUBF/nljap
Cwim5RfWIhvcTujnkwqeQQl2qjAhU1DiSGZJ46EmqmB+uhI28fEcE0Bs4abVUXIcyE9AWX/YUEnJ
dexsS0AF/9BLdmsI6An2VifvbyHeR2t7J0L2PeObVA9adf4PFlBn7JIHH5d64hmXAv+TaQro0us+
Ml8QOHi8+jyrhMD2UIehmgHBdaqS7H0EICiyn38nq0K7ABEq6sMlv/VdEVbJ169NZukXbdWqJ6Fv
e6WrlasrfC21n1PHZDuoDDADjGbr/oa8S3cP5ZyBcUkMImiyAVvdauloKfuUgwtz
# left security gateway (public-network address)
left=172.29.134.163
# next hop to reach right
leftnexthop=172.29.134.179
# subnet behind left (omit if there is no subnet)
leftsubnet=192.168.9.0/24
# right s.g., subnet behind it, and next hop to reach left
rightrsasigkey=0sAQOJetNwLtfSeaxFeyqBSAvKCwf2Fu2ow0cg/4v3LcrUBF/nlja
pCwim5RfWIhvcTujnkwqeQQl2qjAhU1DiSGZJ46EmqmB+uhI28fEcE0Bs4abVUXIcyE9AWX/YUEn
JdexsS0AF/9BLdmsI6An2VifvbyHeR2t7J0L2PeObVA9adf4PFlBn7JIHH5d64hmXAv+TaQro0us
+Ml8QOHi8+jyrhMD2UIehmgHBdaqS7H0EICiyn38nq0K7ABEq6sMlv/VdEVbJ169NZukXbdWqJ6F
ve6WrlasrfC21n1PHZDuoDDADjGbr/oa8S3cP5ZyBcUkMImiyAVvdauloKfuUgwtz
right=192.168.2.1
rightnexthop=192.168.2.2
auto=add
--------------------------------------------------------------------
mail2web - Check your email from the web at
http://mail2web.com/ .
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.4 : Wed Aug 21 2002 - 16:20:22 CEST