[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ipsec tunnel



Hi,

I've been trying to get a vpn tunnel set up on an OBSD 3.6 box for the last few days. Everything seems to be working fine, except that the returning packets from the tunnel get lost.


10.0.1.0/24 -> obsd (static ip) -> internet <- sonicwall (static ip) <- 10.1.1.0/24



The tunnel is up and I can see the ping traffic come and go.


# tcpdump -i enc0

10:46:19.741227 (authentic,confidential): SPI 0x00005000: 10.0.1.25 > 10.1.1.128: icmp: echo request (encap)

10:46:19.761192 (authentic,confidential): SPI 0x00005001: 10.1.1.128 > 10.0.1.25: icmp: echo reply (encap)


# tcpdump -n -e -ttt -i pflog0 host 10.1.1.128

Dec 29 10:48:08.214942 rule 2/0(match): pass in on fxp1: 10.0.1.25 > 10.1.1.128: icmp: echo request

Dec 29 10:48:08.215057 rule 15/0(match): pass out on enc0: 10.0.1.25 > 10.1.1.128: icmp: echo request

Dec 29 10:48:08.226373 rule 14/0(match): pass in on enc0: 10.1.1.128 > 10.0.1.25: icmp: echo reply


Any suggestions?

David

--
programmer n. /pro gram er/ A device for transmuting caffeine into code.



Visit your host, monkey.org