Keith Mitchell wrote: > Sigh. Fixed my pretty little ascii art. > > > eth1 - 10.253.0.1 eth3 - 10.253.0.254 eth0 > /-----------------------\ eth0 192.168.1.1/24 --- Office A > - - Office B --- 10.254.0.1/24 > \---------vpn-----------/ eth2 eth2 >
Okay -- let's back up a minute. When you say 'vpn', what exactly do you mean? I only have access to the 'shorewall dump' information from Office A but I can see that there are a number of IPSEC SPs (and SAs); is THAT what you mean by 'vpn'? And you say: > I cannot, however, ping the private subnets in either office through > the fiber tunnel Please give me an example; source address, destination address and what you see. And a fresh copy of the 'shorewall dump' output from Office B would be helpful. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
