Hi Dan, thanks for your quick reply. I guess I should have slept on this and returned to it with a fresh set of eyes before submitting a post to the mailing list.
My problem was a simple typo in an iptables input rule allowing esp packets back in - how embarrassing :P Cheers! Russ On 20 May 2010 08:53, Daniel Mentz <danielml+mailinglists.strongs...@sent.com> wrote: > Russ Cox wrote: >> >> The tunnel has come up ok, but no traffic appears to be getting routed >> through the tunnel. > > Hi Ross, > > could you please post the output of the following commands: > > ip -4 a s > ip -4 r s t 0 > iptables-save > > Did you use tcpdump on both interfaces of the gateway in order to find out > whether the gateway sends out ESP packets? > > -Daniel > > -- Russ Cox Systems Engineer e-DBA Ltd. 48A Old Steine, Brighton, East Sussex, BN1 1NH Main: +44 (0) 870 366 7800 Direct: +44 (0) 127 322 4704 email: russ....@e-dba.net Msn: russ....@e-dba.com Skype: russc0x Company No: 365969 Oracle Partner of the Year General Business Technology UKOUG Partner of the year (4 categories) _______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users