<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
With that config you will not be able to ping to or from either
gateway through the VPN but you should be able to ping from LAN to
LAN. To ping to or from a gateway, please add left/rightsourceip as
your gateway's LAN IP.<br>
<br>
Also have you set any firewall rules for the tunnel?<br>
<br>
Nick<br>
<br>
<div class="moz-cite-prefix">On 17/01/2015 14:44, Phil Daws wrote:<br>
</div>
<blockquote
cite="mid:1640927210.377758.1421505877555.JavaMail.zimbra@innovot.com"
type="cite">
<pre wrap="">
Hello:
Have defined a tunnel that is connecting okay but no traffic appears to be directed down it. On each side I have:
conn ipsec
type=tunnel
authby=secret
connaddrfamily=ipv4
left=37.XXX.XXX.XXX
leftsubnet=10.1.0.0/16
right=88.XXX.XXX.XXX
rightsubnet=10.2.0.0/16
esp=3des-md5-96
keyexchange=ike
pfs=yes
auto=start
ipsec auto --status shows:
000 Total IPsec connections: loaded 1, active 1
and ip xfrm policy:
src 10.1.0.0/16 dst 10.2.0.0/16
dir out priority 2608 ptype main
tmpl src 37.XXX.XXX.XXX dst 88.XXX.XXX.XXX
proto esp reqid 16385 mode tunnel
src 10.2.0.0/16 dst 10.1.0.0/16
dir fwd priority 2608 ptype main
tmpl src 88.XXX.XXX.XXX dst 37.XXX.XXX.XXX
proto esp reqid 16385 mode tunnel
src 10.2.0.0/16 dst 10.1.0.0/16
dir in priority 2608 ptype main
tmpl src 88.XXX.XXX.XXX dst 37.XXX.XXX.XXX
proto esp reqid 16385 mode tunnel
so to an untrained eye all looks okay so as confused why its not working :(
Appreciate any help please.
Thanks. Phil
(null)
(null)
_______________________________________________
Swan mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Swan@lists.libreswan.org">Swan@lists.libreswan.org</a>
<a class="moz-txt-link-freetext" href="https://lists.libreswan.org/mailman/listinfo/swan">https://lists.libreswan.org/mailman/listinfo/swan</a>
</pre>
</blockquote>
<br>
</body>
</html>