In short, ipsec packets delivered to my physical interface never make it out of the ipsec interface for further routing. I have turned on klips debugging and configured iptables rules to show me incoming and outgoing traffic on my physical interface. When I send a ping from a local machine to a remote machine, I see the following:
1. an echo request is received on eth0 and forwarded to ipsec0 2. klips_debug spews a lot as the packet is processed 3. an esp packet is sent to the other end of the tunnel via eth1 4. an esp packet is received from the other end of the tunnel on eth1 5. _nothing_
I would expect that if klips_debug spews a lot on send it would do likewise on receive (I ran klipsdebug --all and klipsdebug --set verbose, just to be sure), but it doesn't. I am therefore guessing that the incoming esp packet never makes it to klips, which would certainly explain the subsequent lack of echo response.
What might be wrong?
meeroh --
<http://web.meeroh.org/> | KB1FMP
A: Because it reverses the logical flow of conversation. Q: Why is top posting frowned upon? _______________________________________________ FreeS/WAN Users mailing list [EMAIL PROTECTED] https://mj2.freeswan.org/cgi-bin/mj_wwwusr
