Re: [Users] Routing beyond FreeS/WAN subnet

From: Ashant Chalasani (ashant_at_wapsol.de)
Date: Sat Oct 05 2002 - 21:35:00 CEST

• Next message: puuwmxmwiw10233: "[Users] Look,my beautiful girl friend"
• Previous message: John A. Sullivan III: "Re: [Users] FreeSWAN + Novell NDS"
• In reply to: John A. Sullivan III: "Re: [Users] Routing beyond FreeS/WAN subnet"
• Next in thread: John A. Sullivan III: "Re: [Users] Routing beyond FreeS/WAN subnet"
• Reply: John A. Sullivan III: "Re: [Users] Routing beyond FreeS/WAN subnet"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi, tripped me up. seemed like the routing beyond my ipsec'd subnet was
accomplished for a second (with 192.168.0.0/16 and 0.0.0.0/0 for leftsubnet),
but NOT the case!

For the following suggestions,

> dying. You could try tcpdump on the gateway

tcpdump reveals that esp packets are exchanged within the vpn subnet, but
nothing is shown in the dump about pings that are being generated to leave
the subnet.

> Do the packets make it to the
> 192.168.11.0 network?

Apparently not.

> Sentinel client ever put the ESP packets on the 192.168.12.0
> network? Are the replies seen on that network? This will help

Ya, tcpdump shows esp packets.

Any more ideas appreciated.

Ashant
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: puuwmxmwiw10233: "[Users] Look,my beautiful girl friend"
• Previous message: John A. Sullivan III: "Re: [Users] FreeSWAN + Novell NDS"
• In reply to: John A. Sullivan III: "Re: [Users] Routing beyond FreeS/WAN subnet"
• Next in thread: John A. Sullivan III: "Re: [Users] Routing beyond FreeS/WAN subnet"
• Reply: John A. Sullivan III: "Re: [Users] Routing beyond FreeS/WAN subnet"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.5 : Mon Oct 07 2002 - 05:20:18 CEST