If you mind me asking...what are you routing? IP address of the gateway? IP addresses of the encryption domain behind the other peer?
CS >-----Original Message----- >From: Mailing list for discussion of Firewall-1 >[mailto:[EMAIL PROTECTED] On Behalf >Of Hans Bayle >Sent: Thursday, 14 August, 2003 15:38 >To: [EMAIL PROTECTED] >Subject: [FW-1] IP proto 50 (ESP) / routing - ESP traffic >ignores routing table > > >123456789012345678901234567890123456789012345678901234567890123 >4567890123456 >7890 > >Hi, > > >We are using NG FP3 on Solaris 9. > >On our VPN gateway with 2 external interfaces; one interface connected >to Internet, the other to an internal WAN, ESP traffic ignores >the routing >table, and always flows to the default gateway (a router to Internet), >and not to another VPN gateway that is connected to the internal WAN. > >Within the same configuration, management traffic, TCP traffic >etc. *does* >follow >the routing table. > >What can I do to let ESP traffic follow the routing table? > > >Hans Bayle >Network Consultant >[EMAIL PROTECTED] > >================================================= >To set vacation, Out-Of-Office, or away messages, >send an email to [EMAIL PROTECTED] >in the BODY of the email add: >set fw-1-mailinglist nomail >================================================= >To unsubscribe from this mailing list, >please see the instructions at >http://www.checkpoint.com/services/mailing.html >================================================= >If you have any questions on how to change your >subscription options, email >[EMAIL PROTECTED] >================================================= > Trusted Systems - http://www.trusted.pt Pra�a de Alvalade, n.� 6 - 6.� piso 1700-036 Lisboa, PORTUGAL Tel: +351 217994200 Fax: +351 217994242 -- A presente mensagem pode conter informa��o considerada confidencial. Se o receptor desta mensagem n�o for o destinat�rio indicado, fica expressamente proibido de copiar ou endere�ar a mensagem a terceiros. Em tal situa��o, o receptor dever� destruir a presente mensagem e por gentileza informar o emissor de tal facto. Privileged or confidential information may be contained in this message. If you are not the addressee indicated in this message, you may not copy or deliver this message to anyone. In such case, you should destroy this message and kindly notify the sender by reply email. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
