<html><body><div style="font-family: arial, helvetica, sans-serif; font-size: 12pt; color: #000000"><div><div>Hi Team, <br></div><br><div>Please help in below scenario:- <br></div><br><div>I have 3 machines :- machine A ( ip - 10.5.5.7, Client ), machine B(10.5.5.52, server ) and machine C<span class="Object" role="link" id="OBJ_PREFIX_DWT65_com_zimbra_phone"><a href="callto:(192.168.13.212" onclick="window.top.Com_Zimbra_Phone.unsetOnbeforeunload()" data-mce-href="callto:(192.168.13.212">(192.168.13.212</a></span> ). <br></div><br><div>Ipsec sec tunnel established between machine A and machine B. when i ping from A to B , ipsec whack --trafficstatus in and out byte get increase. <br></div><br><div>Now machine C is connected with machine B through usb to ethernet converter and there is a route at machine A so that i can ping machine C through machine A, But when i ping machine C from machine A , ping get started but ipsec whack --trafficstatus is not increasing means outgoing packets are going through tunnel. </div><div>and when i ping C to A , ipsec whack --trafficstatus showing in out bytes correclty.<br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>means when i ping A to C packets not going through tunnel but when i ping C to A packets going through tunnel. </div><div><br data-mce-bogus="1"></div><div>route set at machine A = route add -net 192.168.13.0/24 gw 10.5.5.52<br data-mce-bogus="1"></div><div>route set at machine C = route add -net 10.5.5.0/24 gw 192.168.13.50 <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Note - 192.168.13.50 is the ip of usb to ethernet interface which connect machine B(server) to C. <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><br><div>Expected result - I want when i ping machine C through machine A , ipsec traffic should get increase. </div><br><div>Note - Ipsec tunnel is only between A and B , where A is client and B is server.</div><div><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Server ipsec.conf <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>config setup<br> protostack=netkey<br> #virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v4:!10.231.247.0/24,%v4:!10.231.246.0/24<br> # uniqueids=no<br> nssdir=/etc/ipsec.d<br> #dumpdir=/var/run/pluto/<br> logfile=/var/log/pluto.log<br>conn myconn<br> authby=rsasig<br> left=10.5.5.50<br> leftcert=10.5.5.50<br> leftid=%fromcert<br> leftsendcert=always<br> #leftsubnet=10.5.5.50/24<br> # leftrsasigkey=%cert<br> right=10.5.5.5<br> #rightsubnet=10.5.5.5/24<br> rightid=%fromcert<br> type=tunnel<br> ikev2=insist<br> auto=start<br> encapsulation=yes<br><br data-mce-bogus="1"></div><div>Client ipsec.conf<br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>config setup<br> protostack=netkey<br> #virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v4:!10.231.247.0/24,%v4:!10.231.246.0/24<br> # uniqueids=no<br> nssdir=/etc/ipsec.d<br> #dumpdir=/var/run/pluto/<br> logfile=/var/log/pluto.log<br>conn myconn<br> authby=rsasig<br> left=10.5.5.5<br> leftcert=10.5.5.50<br> leftid=%fromcert<br> leftsendcert=always<br> #leftsubnet=10.5.5.55/24<br> # leftrsasigkey=%cert<br> right=10.5.5.50<br> #rightsubnet=10.5.5.50/24<br> rightid=%fromcert<br> type=tunnel<br> ikev2=insist<br> auto=start<br> encapsulation=yes<br><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Please help in out in my stuck from last 10 days. <br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div><br data-mce-bogus="1"></div><div>Regards, <br data-mce-bogus="1"></div><div>Mehboob Ansari<br data-mce-bogus="1"></div></div></div></body></html>