Date: Thu, 08 Jul 2010 11:00:01 -0400 From: Steve Bertrand <steve@ipv6canada.com> To: =?ISO-8859-1?Q?Matheus_Weber_da_Concei=E7=E3o?= <matheuswcon@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: VPN IPsec Help Message-ID: <4C35E7F1.9040707@ipv6canada.com> In-Reply-To: <4C35E697.7050006@ipv6canada.com> References: <AANLkTikffXjLu2QTENeRiQ7PhFLrC3Viiar_1BZOQAeP@mail.gmail.com> <4C35D11D.4000304@ipv6canada.com> <AANLkTil1YgXzpTBaQ0_X38oGhPfQWMpLMyKfRCOeY3x_@mail.gmail.com> <4C35E607.2090902@ipv6canada.com> <4C35E697.7050006@ipv6canada.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2010.07.08 10:54, Steve Bertrand wrote: > On 2010.07.08 10:51, Steve Bertrand wrote: >> On 2010.07.08 10:00, Matheus Weber da Conceição wrote: >>>> It has been a long time since I've done IPSec on FBSD, but I'm willing >>>> to bet that this has to do with routing, possibly amongst other things. >>>> On peer 'B' (FBSD box), what internal IP range are you trying to access >>>> the A network from...the same ones (ie. are you trying to bridge the >>>> networks)? >>>> >>> The -peer A- doesn't need to access any -peer B- networks. >>> >>>> Do you have access to the Cisco gear? >>> No. >>> >>>> If so, on FreeBSD, post the output of: >>>> >>>> % netstat -rn >>> >>> Notes: >>> tun0 is my ppp pseudo-device >>> tun5 is my openvpn tunel (192.168.5.0/24) >>> ============ >>> # netstat -rn >>> Routing tables >> >> [ big snip ] >> >> IIRC, you don't need a gre tunnel through IPSec, ...and, I meant to say gif interface, not gre tunnel. Steve
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4C35E7F1.9040707>