Dear Experts,
I met a problem while using Freeswan 2.01 connecting to Cisco router via
IPSEC.
Setting IKE SA and IPSEC SA are pretty good. Here is my network topology,
(130.130.130.1eth1) Linub Box (eth0, 200.200.200.233) <====> 200.200.200.184
Cisco
Router (another interface, 140.140.140.1)
Here is my ipsec configuration /etc/ipsec.conf
left=200.200.200.233
leftsubnet=130.130.130.0/24
leftnexthop=200.200.200.184
leftfirewall=no
right=200.200.200.184
rightsubnet=140.140.140.0/24
rightnexthop=200.200.200.233
authby=secret
keyexchange=ike
keylife=1h
ikelifetime=1h
type=tunnel
My problem is that I can not ping 140.140.140 from 130.130.130.1. At this
time,
I can see Cisco router send echo reply packet to 130.130.130.1 and Lunix
eth0(20
0.200.200.233) receive the ESP packet. However, Linux interface ipsec0 has
not g
ot anything from Cisco router or eth0.
If I stop IPSEC in Linux and Cisco router and I keep other configurations.
Thus
I can ping 140.140.140.1 from 130.130.130.1
I have disabled any firewall in Linux box.
Hope someone can light me.
Since I have not subscribed this mail group, please reply me including my
e-mail address.
Thanks in advanced
Fan Wangcheng
_______________________________________________
FreeS/WAN Users mailing list
[EMAIL PROTECTED]
https://mj2.freeswan.org/cgi-bin/mj_wwwusr
