Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

ipsec0 doesn't go up
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
sickalien
n00b
n00b


Joined: 13 Mar 2003
Posts: 53
Location: Rosario/Argentina
PostPosted: Mon Feb 14, 2005 2:23 pm    Post subject: ipsec0 doesn't go up Reply with quote
hi everyone

i'm configuring openswan between two gateways.
i had this already working previously with a redhat box.

after some work it seems that the vpn is working

Code:
]
lilith root # ipsec auto --up bsas-rosario
112 "bsas-rosario" #3: STATE_QUICK_I1: initiate
004 "bsas-rosario" #3: STATE_QUICK_I2: sent QI2, IPsec SA established {ESP=>0x36be4959 <0x7c3684a9}


the problem is that the right side (subnet 192.168.0.0) does not have the interface ipsec0.
the left side (subnet 192.168.1.0) has it, and the pings are returned

Code:

duke:~# ping 192.168.0.31
PING 192.168.0.31 (192.168.0.31): 56 data bytes
64 bytes from 192.168.0.31: icmp_seq=0 ttl=127 time=84.4 ms
64 bytes from 192.168.0.31: icmp_seq=1 ttl=127 time=67.6 ms


the previous (redhat) configuration and the left side server were configured by someone else, so i don't know if i missing something.
do i have to declare the interface ipsec0 or something?

thanks.
Back to top
View user's profile Send private message
n3mo
l33t
l33t


Joined: 28 Mar 2004
Posts: 657
Location: In a Cruel World
PostPosted: Mon Feb 14, 2005 3:24 pm    Post subject: Reply with quote
The interface ipsec0 is not show up in kernel 2.6, but I think this is better cause it's easyest to manage the firewall, thus this feature doesn't compromize the functionality, yuo cuold ping the other side of the lan, aren't you ?

:wink:
_________________
Google, really.
Back to top
View user's profile Send private message
sickalien
n00b
n00b


Joined: 13 Mar 2003
Posts: 53
Location: Rosario/Argentina
PostPosted: Mon Feb 14, 2005 3:38 pm    Post subject: Reply with quote
ok, i see.
thanks for the data... i was going mad with this..

i will have to change the firewall rules to permit the packets go through...

is there any way to show ipsec0 by hand?
Back to top
View user's profile Send private message
n3mo
l33t
l33t


Joined: 28 Mar 2004
Posts: 657
Location: In a Cruel World
PostPosted: Tue Feb 15, 2005 9:02 am    Post subject: Reply with quote
Reboot with 2.4 kernel ? :wink:

I really don't know, sorry...
_________________
Google, really.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy