Re: [VF][Users] Cannot ping internal hosts but only internal interface

From: Sam Sgro (sam_at_freeswan.org)
Date: Sun Dec 29 2002 - 06:28:14 CET

• Next message: Sam Sgro: "Re: [Users] Re: Cannot ping internal hosts but only internal interface"
• Previous message: Sam Sgro: "Re: [Users] Help Please - want to use Open Source"
• In reply to: jsa62_at_tid.es: "Re: [VF][Users] Cannot ping internal hosts but only internal interface"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

-----BEGIN PGP SIGNED MESSAGE-----

On Fri, 27 Dec 2002 jsa62_at_tid.es wrote:

> i see that in your ipsec.conf file you dont have specified which the
> right subnet is ....
> i have a similar scennario and i have rightsubnet= and rightnexthop= ,
> yes equal empty, since we dont know those values

Since he's using:

> > right=%any

You do not need "rightnexthop" at all (if right represents your peer). Nor do
you require "rightsubnet", if the Roadwarrior is not routing for either a
subnet or is behind NAT.

- --
Sam Sgro
sam_at_freeswan.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.

iQCVAwUBPg6H8UOSC4btEQUtAQFIGAP7BHcNI1SYE7GEum9cqi6sZJE4Br4w434a
jvgIzPWxqg5SJIeK6HsKHT96TawjxNewHmKhWv2470Lhss+QmqnOtmp1rQj0viMx
HPCqDeml01Br0Z81007kPSvShr/KH/Rsd8NVaKCZe8gxAvHx84ZIIuseJym+bM86
WcgpdJ/VZn8=
=shbB
-----END PGP SIGNATURE-----

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

• Next message: Sam Sgro: "Re: [Users] Re: Cannot ping internal hosts but only internal interface"
• Previous message: Sam Sgro: "Re: [Users] Help Please - want to use Open Source"
• In reply to: jsa62_at_tid.es: "Re: [VF][Users] Cannot ping internal hosts but only internal interface"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.5 : Mon Dec 30 2002 - 05:21:12 CET