[Users] Freeswan working with Cisco problem

[Fan Wangcheng]

Dear Experts,   I met a problem while using Freeswan 2.01 connecting to Cisco router via IPSEC. Setting IKE SA and IPSEC SA are pretty good. Here is my network topology,   (130.130.130.1eth1) Linub Box (eth0, 200.200.200.233) <====> 200.200.200.184 Cisco  Router (another interface, 140.140.140.1)   Here is my ipsec configuration /etc/ipsec.conf         left=200.200.200.233         leftsubnet=130.130.130.0/24         leftnexthop=200.200.200.184         leftfirewall=no         right=200.200.200.184         rightsubnet=140.140.140.0/24         rightnexthop=200.200.200.233         authby=secret         keyexchange=ike         keylife=1h         ikelifetime=1h         type=tunnel   My problem is that I can not ping 140.140.140 from 130.130.130.1. At this time, I can see Cisco router send echo reply packet to 130.130.130.1 and Lunix eth0(20 0.200.200.233) receive the ESP packet. However, Linux interface ipsec0 has not g ot anything from Cisco router or eth0.   If I stop IPSEC in Linux and Cisco router and I keep other configurations. Thus I can ping 140.140.140.1 from 130.130.130.1   I have disabled any firewall in Linux box.   Hope someone can light me.   Since I have not subscribed this mail group, please reply me including my e-mail address.   Thanks in advanced   Fan Wangcheng