Hi Charles & MLu,
I'm having similar problems, and have found this thread helpful. I've
been wondering, do we have to declare the routing on the gateways, or
shouldn't ipsec handle this? Also, what if the ipsec router is not the
default gateway for a machine that you are trying to ping from
elsewhere? Do the pings try to return through the wrong router?
- Jon
Charles Steinkuehler wrote:
>
> > I strongly hope that's my mistake somewhere and not the ISP's. If the ISP
> blocks the IPSEC, could I connect to my office's VPN server? I still can do
> that before this experiment (removing ipsec module...).
> >
> > The bad (and probably good -:)) news is that I do not see anything logged
> into /var/log/messages on my site after I ping the other site.
> >
> > Lynn mentioned that "But more likely, the route to the correct local
> subnet on each machine is missing" . How can I detect that and how to fix
> it.
>
> Look at the output of "ip addr", "ip route", "ipsec look", and "ipsec barf"
> to check your network & VPN setup. Fixing any problems depends on exactly
> what's wrong...
>
> Charles Steinkuehler
> http://lrp.steinkuehler.net
> http://c0wz.steinkuehler.net (lrp.c0wz.com mirror)
>
> _______________________________________________
> Leaf-user mailing list
> [EMAIL PROTECTED]
> https://lists.sourceforge.net/lists/listinfo/leaf-user
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
