[Swan] cannot get traffic to lan when using xauth and pool address is on lan segment

Antonio Silva asilva at wirelessmundi.com
Wed Apr 19 19:18:06 UTC 2017


it's working for me with leftsourceip=192.168.10.1 (server lan/gateway 
ip) and pool 192.168.10.206-210.

The proxy_arp is set to 0 on all interfaces.

When set the tunnel without leftsourceip is when i don't have traffic to 
lan.

Now i do see the arp replies:

21:16:05.120182 ARP, Request who-has 192.168.10.207 tell 192.168.10.25, 
length 46
21:16:05.904139 ARP, Reply 192.168.10.207 is-at f8:b1:56:b7:7f:d8, length 28


The mac is from the lan device.



On 04/19/2017 07:33 PM, Paul Wouters wrote:
> On Wed, 19 Apr 2017, Tuomo Soini wrote:
>
>> On Wed, 19 Apr 2017 15:08:23 +0200
>> Antonio Silva <asilva at wirelessmundi.com> wrote:
>>
>>> yes, my bad, i remove my custom updown script and is working ok.
>>>
>>> In my case i only set leftsourceip=<lan gateway ip>, no need to set
>>> proxy_arp = 1.
>>
>> Both leftsourceip=1 and proxy_arp are needed.
>
> I don't think you meant leftsourceip=1 ?
>
> I guess you meant leftsourceip=addresspoolip and proxy_arp=1 for the
> lan interface?
>
> Paul



More information about the Swan mailing list