<html><body><div style="font-family: arial, helvetica, sans-serif; font-size: 12pt; color: #000000"><div>Hi Team, <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Please help in below scenario:- <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>I have 3 machines :- machine A ( ip - 10.5.5.7, Client ), machine B(10.5.5.52, server ) and machine C(192.168.13.212 ). <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Ipsec sec tunnel established between machine A and machine B. when i ping from A to B , ipsec whack --trafficstatus in and out byte get increase. <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Now machine C is connected with machine B and there is a route so that i can ping machine C through machine A, But when i ping machine C from machine A , ping get started but ipsec whack --trafficstatus is not increasing. packets are going through tunnel. </div><div><br data-mce-bogus="1"></div><div>Expected result - I want when i ping machine C through machine A , ipsec traffic should get increase. </div><div><br data-mce-bogus="1"></div><div>Note - Ipsec tunnel is only between A and B , where A is client and B is server. <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><span style="text-decoration: underline;" data-mce-style="text-decoration: underline;"><strong>Client ipsec.conf</strong> </span><br data-mce-bogus="1"></div><div><span style="text-decoration: underline;" data-mce-style="text-decoration: underline;"><br data-mce-bogus="1"></span></div><div>conn ikesa<br> authby=rsasig<br> left=10.5.5.5<br> #leftsourceip=10.5.5.5<br> leftsubnet=10.5.5.5/24<br> leftcert=10.5.5.5 # cert name <br> leftid=%fromcert<br> leftsendcert=always <br> right=10.5.5.50 <br> #rightsourceip=10.5.5.50 <br> rightsubnet=10.5.5.50/24 <br> rightid=%fromcert <br> #decap-dscp=yes<br> also=profile<br> auto=start<span style="text-decoration: underline;" data-mce-style="text-decoration: underline;"><br><br data-mce-bogus="1"></span></div><div><span style="text-decoration: underline;" data-mce-style="text-decoration: underline;"><br data-mce-bogus="1"></span></div><div><span style="text-decoration: underline;" data-mce-style="text-decoration: underline;">Server ipsec.conf<br data-mce-bogus="1"></span></div><div><br data-mce-bogus="1"></div><div>conn profile<br> authby=rsasig<br> left=10.5.5.50<br> #leftsourceip=10.5.5.50<br> leftsubnet=10.5.5.50/24<br> leftcert=10.5.5.50<br> leftid=%fromcert<br> leftsendcert=always<br> #leftsubnet=192.168.15.0/24<br> #rightaddresspool=10.10.5.2-10.10.5.10<br> right=10.5.5.5<br> #rightsourceip=10.5.5.5<br> rightsubnet=10.5.5.5/24<br> rightid=%fromcert<br> auto=start<br><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Please help me out. <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Thanks in advance,<br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Regards,<br data-mce-bogus="1"></div><div>Mehboob Ansari <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div></div></body></html>