<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    I responded to your last e-mail on the 6th ......<br>
    <br>
    <div class="moz-cite-prefix">On 10/10/2020 14:09, Mehboob Ansari
      wrote:<br>
    </div>
    <blockquote type="cite"
      cite="mid:91703676.980889.1602335363533.JavaMail.zimbra@wavenetcorp.com">
      <meta http-equiv="content-type" content="text/html; charset=UTF-8">
      <div style="font-family: arial, helvetica, sans-serif; font-size:
        12pt; color: #000000">
        <div>
          <div>Hi Team, <br>
          </div>
          <br>
          <div>Please help in below scenario:- <br>
          </div>
          <br>
          <div>I have 3 machines :- machine A ( ip - 10.5.5.7, Client ),
            machine B(10.5.5.52, server ) and machine C<span
              class="Object" role="link"
              id="OBJ_PREFIX_DWT65_com_zimbra_phone"><a
                href="callto:(192.168.13.212"
                onclick="window.top.Com_Zimbra_Phone.unsetOnbeforeunload()"
                data-mce-href="callto:(192.168.13.212"
                moz-do-not-send="true">(192.168.13.212</a></span> ). <br>
          </div>
          <br>
          <div>Ipsec sec tunnel established between machine A and
            machine B. when i ping from A  to B , ipsec whack
            --trafficstatus in and out byte get increase. <br>
          </div>
          <br>
          <div>Now machine C is connected with machine B through usb to
            ethernet converter and there is a route at machine A so that
            i can ping machine C through machine A, But when i ping
            machine C from machine A , ping get started but ipsec whack
            --trafficstatus is not increasing means outgoing packets are
            going through tunnel. </div>
          <div>and when i ping C to A , ipsec whack --trafficstatus
            showing in out bytes correclty.<br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div>means when i ping A to C packets not going through tunnel
            but when i ping C to A packets going through tunnel. </div>
          <div><br data-mce-bogus="1">
          </div>
          <div>route set at machine A = route add -net 192.168.13.0/24
            gw 10.5.5.52<br data-mce-bogus="1">
          </div>
          <div>route set at machine C = route add -net 10.5.5.0/24 gw
            192.168.13.50 <br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div>Note - 192.168.13.50 is the ip of usb to ethernet
            interface which connect machine B(server) to C. <br
              data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <br>
          <div>Expected result - I want when i ping machine C through
            machine A , ipsec traffic should get increase. </div>
          <br>
          <div>Note - Ipsec tunnel is only between A and B , where A is
            client and B is server.</div>
          <div><br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div>Server ipsec.conf <br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div>config setup<br>
                    protostack=netkey<br>
                   
#virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v4:!10.231.247.0/24,%v4:!10.231.246.0/24<br>
                   # uniqueids=no<br>
                    nssdir=/etc/ipsec.d<br>
                    #dumpdir=/var/run/pluto/<br>
                    logfile=/var/log/pluto.log<br>
            conn myconn<br>
                    authby=rsasig<br>
                    left=10.5.5.50<br>
                    leftcert=10.5.5.50<br>
                    leftid=%fromcert<br>
                    leftsendcert=always<br>
                    #leftsubnet=10.5.5.50/24<br>
                  #  leftrsasigkey=%cert<br>
                    right=10.5.5.5<br>
                    #rightsubnet=10.5.5.5/24<br>
                    rightid=%fromcert<br>
                    type=tunnel<br>
                    ikev2=insist<br>
                    auto=start<br>
                    encapsulation=yes<br>
            <br data-mce-bogus="1">
          </div>
          <div>Client ipsec.conf<br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div>config setup<br>
                    protostack=netkey<br>
                   
#virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:25.0.0.0/8,%v4:!10.231.247.0/24,%v4:!10.231.246.0/24<br>
                   # uniqueids=no<br>
                    nssdir=/etc/ipsec.d<br>
                    #dumpdir=/var/run/pluto/<br>
                    logfile=/var/log/pluto.log<br>
            conn myconn<br>
                    authby=rsasig<br>
                    left=10.5.5.5<br>
                    leftcert=10.5.5.50<br>
                    leftid=%fromcert<br>
                    leftsendcert=always<br>
                    #leftsubnet=10.5.5.55/24<br>
                  #  leftrsasigkey=%cert<br>
                    right=10.5.5.50<br>
                    #rightsubnet=10.5.5.50/24<br>
                    rightid=%fromcert<br>
                    type=tunnel<br>
                    ikev2=insist<br>
                    auto=start<br>
                    encapsulation=yes<br>
            <br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div>Please help in out in my stuck from last 10 days. <br
              data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div><br data-mce-bogus="1">
          </div>
          <div>Regards, <br data-mce-bogus="1">
          </div>
          <div>Mehboob Ansari<br data-mce-bogus="1">
          </div>
        </div>
      </div>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <pre class="moz-quote-pre" wrap="">_______________________________________________
Swan mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Swan@lists.libreswan.org">Swan@lists.libreswan.org</a>
<a class="moz-txt-link-freetext" href="https://lists.libreswan.org/mailman/listinfo/swan">https://lists.libreswan.org/mailman/listinfo/swan</a>
</pre>
    </blockquote>
    <br>
  </body>
</html>