<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
I responded to your last e-mail on the 6th ......<br>
<br>
<div class="moz-cite-prefix">On 10/10/2020 14:09, Mehboob Ansari
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:91703676.980889.1602335363533.JavaMail.zimbra@wavenetcorp.com">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<div style="font-family: arial, helvetica, sans-serif; font-size:
12pt; color: #000000">
<div>
<div>Hi Team, <br>
</div>
<br>
<div>Please help in below scenario:- <br>
</div>
<br>
<div>I have 3 machines :- machine A ( ip - 10.5.5.7, Client ),
machine B(10.5.5.52, server ) and machine C<span
class="Object" role="link"
id="OBJ_PREFIX_DWT65_com_zimbra_phone"><a
href="callto:(192.168.13.212"
onclick="window.top.Com_Zimbra_Phone.unsetOnbeforeunload()"
data-mce-href="callto:(192.168.13.212"
moz-do-not-send="true">(192.168.13.212</a></span> ). <br>
</div>
<br>
<div>Ipsec sec tunnel established between machine A and
machine B. when i ping from A to B , ipsec whack
--trafficstatus in and out byte get increase. <br>
</div>
<br>
<div>Now machine C is connected with machine B through usb to
ethernet converter and there is a route at machine A so that
i can ping machine C through machine A, But when i ping
machine C from machine A , ping get started but ipsec whack
--trafficstatus is not increasing means outgoing packets are
going through tunnel. </div>
<div>and when i ping C to A , ipsec whack --trafficstatus
showing in out bytes correclty.<br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div>means when i ping A to C packets not going through tunnel
but when i ping C to A packets going through tunnel. </div>
<div><br data-mce-bogus="1">
</div>
<div>route set at machine A = route add -net 192.168.13.0/24
gw 10.5.5.52<br data-mce-bogus="1">
</div>
<div>route set at machine C = route add -net 10.5.5.0/24 gw
192.168.13.50 <br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div>Note - 192.168.13.50 is the ip of usb to ethernet
interface which connect machine B(server) to C. <br
data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<br>
<div>Expected result - I want when i ping machine C through
machine A , ipsec traffic should get increase. </div>
<br>
<div>Note - Ipsec tunnel is only between A and B , where A is
client and B is server.</div>
<div><br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div>Server ipsec.conf <br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div>config setup<br>
protostack=netkey<br>
#virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v4:!10.231.247.0/24,%v4:!10.231.246.0/24<br>
# uniqueids=no<br>
nssdir=/etc/ipsec.d<br>
#dumpdir=/var/run/pluto/<br>
logfile=/var/log/pluto.log<br>
conn myconn<br>
authby=rsasig<br>
left=10.5.5.50<br>
leftcert=10.5.5.50<br>
leftid=%fromcert<br>
leftsendcert=always<br>
#leftsubnet=10.5.5.50/24<br>
# leftrsasigkey=%cert<br>
right=10.5.5.5<br>
#rightsubnet=10.5.5.5/24<br>
rightid=%fromcert<br>
type=tunnel<br>
ikev2=insist<br>
auto=start<br>
encapsulation=yes<br>
<br data-mce-bogus="1">
</div>
<div>Client ipsec.conf<br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div>config setup<br>
protostack=netkey<br>
#virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v4:!10.231.247.0/24,%v4:!10.231.246.0/24<br>
# uniqueids=no<br>
nssdir=/etc/ipsec.d<br>
#dumpdir=/var/run/pluto/<br>
logfile=/var/log/pluto.log<br>
conn myconn<br>
authby=rsasig<br>
left=10.5.5.5<br>
leftcert=10.5.5.50<br>
leftid=%fromcert<br>
leftsendcert=always<br>
#leftsubnet=10.5.5.55/24<br>
# leftrsasigkey=%cert<br>
right=10.5.5.50<br>
#rightsubnet=10.5.5.50/24<br>
rightid=%fromcert<br>
type=tunnel<br>
ikev2=insist<br>
auto=start<br>
encapsulation=yes<br>
<br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div>Please help in out in my stuck from last 10 days. <br
data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div><br data-mce-bogus="1">
</div>
<div>Regards, <br data-mce-bogus="1">
</div>
<div>Mehboob Ansari<br data-mce-bogus="1">
</div>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
Swan mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Swan@lists.libreswan.org">Swan@lists.libreswan.org</a>
<a class="moz-txt-link-freetext" href="https://lists.libreswan.org/mailman/listinfo/swan">https://lists.libreswan.org/mailman/listinfo/swan</a>
</pre>
</blockquote>
<br>
</body>
</html>