<html><body><div style="font-family: arial, helvetica, sans-serif; font-size: 12pt; color: #000000"><div>Hi Team, <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Please help in below scenario:- <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>I have 3 machines :- machine A ( ip - 10.5.5.7, Client ), machine B(10.5.5.52, server ) and machine C(192.168.13.212 ). <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Ipsec sec tunnel established between machine A and machine B. when i ping from A  to B , ipsec whack --trafficstatus in and out byte get increase. <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Now machine C is connected with machine B and there is a route so that i can ping machine C through machine A, But when i ping machine C from machine A , ping get started but ipsec whack --trafficstatus is not increasing. packets are going through tunnel. </div><div><br data-mce-bogus="1"></div><div>Expected result - I want when i ping machine C through machine A , ipsec traffic should get increase. </div><div><br data-mce-bogus="1"></div><div>Note - Ipsec tunnel is only between A and B , where A is client and B is server. <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><span style="text-decoration: underline;" data-mce-style="text-decoration: underline;"><strong>Client ipsec.conf</strong> </span><br data-mce-bogus="1"></div><div><span style="text-decoration: underline;" data-mce-style="text-decoration: underline;"><br data-mce-bogus="1"></span></div><div>conn ikesa<br>        authby=rsasig<br>        left=10.5.5.5<br>        #leftsourceip=10.5.5.5<br>        leftsubnet=10.5.5.5/24<br>        leftcert=10.5.5.5       # cert name <br>        leftid=%fromcert<br>        leftsendcert=always                            <br>        right=10.5.5.50                               <br>        #rightsourceip=10.5.5.50                        <br>        rightsubnet=10.5.5.50/24                        <br>        rightid=%fromcert                              <br>        #decap-dscp=yes<br>        also=profile<br>        auto=start<span style="text-decoration: underline;" data-mce-style="text-decoration: underline;"><br><br data-mce-bogus="1"></span></div><div><span style="text-decoration: underline;" data-mce-style="text-decoration: underline;"><br data-mce-bogus="1"></span></div><div><span style="text-decoration: underline;" data-mce-style="text-decoration: underline;">Server ipsec.conf<br data-mce-bogus="1"></span></div><div><br data-mce-bogus="1"></div><div>conn profile<br>        authby=rsasig<br>        left=10.5.5.50<br>        #leftsourceip=10.5.5.50<br>        leftsubnet=10.5.5.50/24<br>        leftcert=10.5.5.50<br>        leftid=%fromcert<br>        leftsendcert=always<br>        #leftsubnet=192.168.15.0/24<br>        #rightaddresspool=10.10.5.2-10.10.5.10<br>        right=10.5.5.5<br>        #rightsourceip=10.5.5.5<br>        rightsubnet=10.5.5.5/24<br>        rightid=%fromcert<br>        auto=start<br><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Please help me out. <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Thanks in advance,<br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Regards,<br data-mce-bogus="1"></div><div>Mehboob Ansari <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div></div></body></html>