[prev in list] [next in list] [prev in thread] [next in thread] 

List:       strongswan-users
Subject:    [strongSwan] Routing for Site-to-Site VPN
From:       Alok Kumar <alok.membership () gmail ! com>
Date:       2013-03-20 12:43:03
Message-ID: CAE_HgPLLP-61HV2SRtCRnCYuqBxEYk54zvuP+XUpHzjY2QRH2g () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


First of all Hello to everybody in strongswan mailinglist as I'm new in
this list.

Just done with a successful configuration of StongSwan's IPSec Site to Site
VPN. Basic parameter which I specified at LOCATION A & LOCATION B
configuration are provided below,

Upon successful connection establishment I'm able to PING
192.168.22.1(LocationB) from 192.168.11.1(LocationA) and Vice-Versa  but
not able to ping the same (192.168.22.1) from any other system connected of
Location A and ViceVersa.  I assigned other system at Location A the same
range of IP (i.e.192.168.11.0/24) and connected it to HUB/Switch which is
directly connected to eth1=192.168.11.1.

I'm facing this issue on Both Locations, do I need to add specific route on
both the location on each computer, please suggest what changes it requires?




LOCATION A:
eth0=121.xxx.xxx.xxx
eth1=192.168.11.1/24

(ipsec.conf)
conn wncon
     left=%defaultroute
     leftsubnet=192.168.11.0/24
     leftcert=wpub.pem
     right=151.xxx.xxx.xxx
     rightsubnet=192.168.22.0/24
     rightid="C=IN, ST=Maharashtra, L=Mumbai, O=test, OU=lab,
CN=151.xxx.xxx.xxx"
     auto=start



LOCATION B:
eth0=151.xxx.xxx.xx
eth1=192.168.22.1/24

(ipsec.conf)
conn wncon
     left=%defaultroute
     leftsubnet=192.168.22.0/24
     leftcert=npub.pem
     right=121.xxx.xxx.xxx
     rightsubnet=192.168.11.0/24
     rightid="C=IN, ST=Maharashtra, L=Mumbai, O=test, OU=lab,
CN=121.xxx.xxx.xxx"
     auto=start

[Attachment #5 (text/html)]

<div dir="ltr"><div>First of all Hello to everybody in strongswan mailinglist as \
I&#39;m new in this list.</div><div><br></div><div>Just done with a successful \
configuration of StongSwan&#39;s IPSec Site to Site VPN. Basic parameter which I \
specified at LOCATION A &amp; LOCATION B configuration are provided below, </div> \
<div><br></div><div>Upon successful connection establishment I&#39;m able to PING \
192.168.22.1(LocationB) from 192.168.11.1(LocationA) and Vice-Versa  but not able to \
ping the same (192.168.22.1) from any other system connected of Location A and \
ViceVersa.  I assigned other system at Location A the same range of IP \
(i.e.192.168.11.0/24) and connected it to HUB/Switch which is directly connected to \
eth1=192.168.11.1.</div> <div><br></div><div>I&#39;m facing this issue on Both \
Locations, do I need to add specific route on both the location on each computer, \
please suggest what changes it requires?</div><div><br></div><div><br></div><div><br> \
</div><div><br></div><div><div>LOCATION \
A:</div><div>eth0=121.xxx.xxx.xxx</div><div>eth1=<a \
href="http://192.168.11.1/24">192.168.11.1/24</a></div><div><br></div><div>(ipsec.conf)</div><div>conn \
wncon<br></div><div>     left=%defaultroute</div> <div>     leftsubnet=<a \
href="http://192.168.11.0/24">192.168.11.0/24</a></div><div>     \
leftcert=wpub.pem</div><div>     right=151.xxx.xxx.xxx</div><div>     rightsubnet=<a \
href="http://192.168.22.0/24">192.168.22.0/24</a></div> <div>     rightid=&quot;C=IN, \
ST=Maharashtra, L=Mumbai, O=test, OU=lab, CN=151.xxx.xxx.xxx&quot;</div><div>     \
auto=start</div><div><br></div><div><br></div><div><br></div><div>LOCATION \
B:</div><div>eth0=151.xxx.xxx.xx</div> <div>eth1=<a \
href="http://192.168.22.1/24">192.168.22.1/24</a></div><div><br></div><div>(ipsec.conf)<br></div><div>conn \
wncon<br></div><div>     left=%defaultroute</div><div>     leftsubnet=<a \
href="http://192.168.22.0/24">192.168.22.0/24</a></div> <div>     \
leftcert=npub.pem</div><div>     right=121.xxx.xxx.xxx</div><div>     rightsubnet=<a \
href="http://192.168.11.0/24">192.168.11.0/24</a></div><div>     rightid=&quot;C=IN, \
ST=Maharashtra, L=Mumbai, O=test, OU=lab, CN=121.xxx.xxx.xxx&quot;</div> <div>     \
auto=start</div></div><div><br></div><div><br></div></div>



_______________________________________________
Users mailing list
Users@lists.strongswan.org
https://lists.strongswan.org/mailman/listinfo/users

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic