[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ipsec tunnel

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: ipsec tunnel
From: David Pieper <david_(_at_)_dpieper_(_dot_)_com>
Date: Wed, 29 Dec 2004 13:13:53 -0600

Hi,

I've been trying to get a vpn tunnel set up on an OBSD 3.6 box for the last few days. Everything seems to be working fine, except that the returning packets from the tunnel get lost.

10.0.1.0/24 -> obsd (static ip) -> internet <- sonicwall (static ip) <- 10.1.1.0/24


The tunnel is up and I can see the ping traffic come and go.


# tcpdump -i enc0

10:46:19.741227 (authentic,confidential): SPI 0x00005000: 10.0.1.25 > 10.1.1.128: icmp: echo request (encap)

10:46:19.761192 (authentic,confidential): SPI 0x00005001: 10.1.1.128 > 10.0.1.25: icmp: echo reply (encap)


# tcpdump -n -e -ttt -i pflog0 host 10.1.1.128

Dec 29 10:48:08.214942 rule 2/0(match): pass in on fxp1: 10.0.1.25 > 10.1.1.128: icmp: echo request

Dec 29 10:48:08.215057 rule 15/0(match): pass out on enc0: 10.0.1.25 > 10.1.1.128: icmp: echo request

Dec 29 10:48:08.226373 rule 14/0(match): pass in on enc0: 10.1.1.128 > 10.0.1.25: icmp: echo reply


Any suggestions?

David

--
programmer n. /pro gram er/ A device for transmuting caffeine into code.

Follow-Ups:
- Re: ipsec tunnel (more info)
  - From: David Pieper

Prev by Date: 21st Chaos Communication Congress in Berlin
Next by Date: PF and DNS requests
Previous by thread: Re: 21st Chaos Communication Congress in Berlin
Next by thread: Re: ipsec tunnel (more info)
Index(es):
- Date
- Thread

Visit your host, monkey.org