IPsec tunnel help
Jigar SOLANKI
sol4nki at gmail.com
Thu Jul 16 01:21:59 UTC 2009
Hi,
I think that you can't see any outgoing traffic because there is no spd rule
that matches any outgoing traffic ( from site A, ie you freebsd box) : this
just comes from your second spd rule where "in" should be "out" :
Try to replace the second rule:
spdadd 192.168.0.0/24 192.168.1.64/32 any -P in ipsec
esp/tunnel/217.150.138.138-217.150.130.163/unique;
By :
spdadd 192.168.0.0/24 192.168.1.64/32 any -P out ipsec
esp/tunnel/217.150.138.138-217.150.130.163/unique;
Hope this helps. :-)
Regards,
--
SOLANKI Jigar
---
More information about the freebsd-net
mailing list