[prev in list] [next in list] [prev in thread] [next in thread]
List: ipsec-tools-devel
Subject: [Ipsec-tools-devel] Re : ipsec tunnel never working
From: paul lee <a58607116 () gmail ! com>
Date: 2009-11-17 6:53:48
Message-ID: 7b03bdae0911162253p44e46630l353674835ec587d8 () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
> hi all
>
>
>
>
> i try to establish ipsec vpn
>
>
>
>
>
> Network-A
>
>
> 192.168.200.0/24
>
>
> +
>
>
> +
>
>
> +
>
>
> 192.168.200.254
>
>
> Gateway A
>
>
> 1.1.1.1
>
>
> +
>
>
> +
>
>
> +
>
>
> +
>
>
> +
>
>
> 2.2.2.1
>
>
> Gatewat B
>
>
> 192.168.1.254
>
>
> +
>
>
> +
>
>
> +
>
>
> Network-B
>
>
> 192.168.1.0/24
>
>
>
>
>
> I wnat manual racoon configure to do it,
>
>
> before i try manual racoon configure.
>
>
> I try another method "ifup ipsec0".
>
>
> ipsec tunnel has be established.
>
>
> and i can ping 192.168.200.254 on gateway B
>
>
>
>
http://ipsec-tools.sourceforge.net/checklist.html
l found something i miss.
gateway A
ip route add to 192.168.1.0/24 via 192.168.200.254 src 192.168.200.254
gateway B
ip route add to 192.168.200.0/24 via 192.168.200.254 src 192.168.1.254
ping 192.168.1.254 on gateway A
resource temporarily unavailable
ping 192.168.200.254 on gateway B
resource temporarily unavailable
then racoon begin Identity Protection mode, and make ipsec tunnel work.
then i can ping 192.168.1.254 on gateway A
but i add a ftp 192.168.200.2 on network A
i can't ping 192.168.200.2 on gateway B
thaks for any advice
best regard
Paul Lee
[Attachment #5 (text/html)]
<div class="gmail_quote"><br>> hi all <br>><br>> <br>> <br>> \
<br>> i try to establish ipsec vpn <br>> <br>> <br>> <br>> <br>> \
<br>> Network-A <br>> <br>> <br> > <a \
href="http://192.168.200.0/24" target="_blank">192.168.200.0/24</a> <br>> \
<br>> <br>> + <br>> <br>> <br>> + <br>> \
<br>> <br>> + <br>> <br>> <br>> 192.168.200.254 <br> > \
<br>> <br>> Gateway A <br>> <br>> <br>> 1.1.1.1 <br>> \
<br>> <br>> + <br>> <br>> <br>> + <br>> \
<br>> <br>> + <br>> <br>> <br>> + <br> > \
<br>> <br>> + <br>> <br>> <br>> 2.2.2.1 <br>> \
<br>> <br>> Gatewat B <br>> <br>> <br>> 192.168.1.254 <br>> \
<br>> <br>> + <br>> <br>> <br>> + <br> > \
<br>> <br>> + <br>> <br>> <br>> Network-B <br>> <br>> \
<br>> <a href="http://192.168.1.0/24" target="_blank">192.168.1.0/24</a> \
<br>> <br>> <br>> <br>> <br>> <br> > I wnat manual racoon \
configure to do it, <br>> <br>> <br>> before i try manual racoon \
configure. <br>> <br>> <br>> I try another method "ifup ipsec0". \
<br>> <br>> <br>> ipsec tunnel has be established. <br> > <br>> \
<br>> and i can ping 192.168.200.254 on gateway B <br>> <br>> <br>> \
<br>> <br><a href="http://ipsec-tools.sourceforge.net/checklist.html" \
target="_blank">http://ipsec-tools.sourceforge.net/checklist.html</a> <br> l found \
something i miss. <br><br>gateway A <br>ip route add to <a \
href="http://192.168.1.0/24" target="_blank">192.168.1.0/24</a> via 192.168.200.254 \
src 192.168.200.254 <br><br>gateway B <br>ip route add to <a \
href="http://192.168.200.0/24" target="_blank">192.168.200.0/24</a> via \
192.168.200.254 src 192.168.1.254 <br> <br>ping 192.168.1.254 on gateway A \
<br>resource temporarily unavailable <br><br>ping 192.168.200.254 on gateway B \
<br>resource temporarily unavailable <br><br>then racoon begin Identity Protection \
mode, and make ipsec tunnel work. <br> <br><br>then i can ping 192.168.1.254 on \
gateway A <br><br>but i add a ftp 192.168.200.2 on network A <br>i can't ping \
192.168.200.2 on gateway B <br><br>thaks for any advice <br>best regard <br><br>Paul \
Lee</div><br>
------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
trial. Simplify your report design, integration and deployment - and focus on
what you do best, core application coding. Discover what's new with
Crystal Reports now. http://p.sf.net/sfu/bobj-july
_______________________________________________
Ipsec-tools-devel mailing list
Ipsec-tools-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipsec-tools-devel
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic