Walid Aweiwi wrote: > but my problem is no route nor ping from RED server to BLUE.
Hi Walid, could you please provide us with the output of the command ip route list It should contain something like 192.168.25.0/24 dev ppp0 scope link src 192.168.100.100 The outlook will look differently on your machine because you're probably using an ethernet link instead of PPP. The output of "ipsec status" looks very promising. What's the exact output of the ping command? Does it say "no route to host" or is it just not getting any reply (100% packet loss) ? Please run tcpdump on the external interfaces of RED and BLUE in order to see if those boxes transmit ESP packets or just unencrypted ICMP packets. For the sake of completeness you could also include the output of the two following commands: ip xfrm state ip xfrm policy Regards, Daniel _______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users
