From: Sam Sgro (sam_at_freeswan.org)
Date: Thu Oct 31 2002 - 21:03:59 CET
-----BEGIN PGP SIGNED MESSAGE-----
On Thu, 31 Oct 2002, Vittorio Muth wrote:
> my configuration is freeswan on my side side and checkpoint on the other
> side, where i do not have access to.
>
> i can ping from my subnet and if i want to ping from my gateway-machine
> this is impossible.
Any chance you've only defined made a subnet-to-subnet tunnel, but not a
gateway-to-subnet tunnel?
http://www.freeswan.ca/code/old/freeswan-1.98b/doc/adv_config.html#multitunnel
I'm not certain if checkpoint will allow you to create such a tunnel without
specifically adding it.
> the route is set right:
>
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> dmz_net 0.0.0.0 255.255.255.0 U 0 0 0
> eth1
> dmz_net 0.0.0.0 255.255.255.0 U 0 0 0
> ipsec0
> subnet_behind_tunnel next_router 255.255.255.0 UG 0 0
> 0 ipsec0
> my_subnet 0.0.0.0 255.255.255.0 U 0 0 0 eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
> 0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 eth1
>
>
> so the gateway machine knows where to route the packets.
>
> any ideas what it could be?
>
> thanks in advance,
>
> vito.
>
> _______________________________________________
> Users mailing list
> Users_at_lists.freeswan.org
> http://lists.freeswan.org/mailman/listinfo/users
>
- --
Sam Sgro
sam_at_freeswan.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.
iQCVAwUBPcGMsUOSC4btEQUtAQEgtgP/bGtpCs21m2I4La75fJJ5G59dxIC7Agk9
IhmytJj53iQJlBueXQiJt9+PxE0Wi4Z9etMmhyCw3IyEYoSJH2j6DJxJEUYml276
Swy4h5gEyZXR9VSFFPpOE2PKx+dTrSI7d3H9O65jUb6zKtsq5d4dxAAZjJXLnBx5
/G487R/pU/o=
=j2qB
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Fri Nov 01 2002 - 05:20:36 CET