[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPSec not passing traffic?

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: IPSec not passing traffic?
From: Jason Opperisano <opie_(_at_)_817west_(_dot_)_com>
Date: Tue, 17 Aug 2004 20:09:13 -0400

On Mon, 2004-08-16 at 01:57, Nick Vahalik wrote:
> Hello,
> 
> I have an OpenBSD <-> OpenBSD IPSec Tunnel between two boxes set up. 
> The SA's appear to be up:  ipsecadm show:
> 
> They aren't processing any data.  Where should I look for errors?

have you enabled ip forwarding?
	# sysctl net.inet.ip.forwarding

are you running pf?  is it dropping packets?
	# pfctl -sa

	# tcpdump -nettti pflog0

-j

=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~
Is it weird in here, or is it just me? -- Steven Wright
=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~

References:
- IPSec not passing traffic?
  - From: Nick Vahalik

Prev by Date: Re: Manually set route keeps reverting to default
Next by Date: Re: any added advantage for dual CPU act as a firewall
Previous by thread: IPSec not passing traffic?
Next by thread: any added advantage for dual CPU act as a firewall
Index(es):
- Date
- Thread

Visit your host, monkey.org