Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 0 replies
  • Subscribers 1 subscriber
  • Views 293 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ASL and freeswan setup (net-net)

Christoph Spoerri
Hi,
I'm trying to setup a net-to-net connection between my office and home network.  We have ASL (using freeswan) installed at the office, and at home I'm using freeswan.

Since both networks use the same VPN software that should be a fairly easy task ?! Not, at least not for me.

So, I'm trying to get some help from this forum.

My setup (so far):
the two ipsec.conf are nearly identical
------------------------------   
config setup
        klipsdebug=none
        plutodebug=all
        manualstart=
        plutoload=%search
        plutostart=%search
        plutowait=no
        interfaces="ipsec0=eth0 ipsec1=eth1"
        
        
conn %default
        type=tunnel
        auto=start
        keyexchange=ike
        auth=esp
        pfs=yes
        keylife=8h
        rekeymargin=10m
        rekeyfuzz=100%
        keyingtries=0
        ikelifetime=1h
        
conn spoerri_1
        left=[official ip of office]
        leftsubnet=192.168.0.0/255.255.255.0
        leftnexthop=[gateway of office]
        right=[official ip of home]
        rightsubnet=192.168.1.0/255.255.255.0
        pfs=yes
        auto=start
        authby=secret
-------------
I also setup forwarding between the two-subnetworks.

Now, ASL start vpn 'automatically'. On my home gateway machine I type the following:
ipsec --auto ready
ipsec --auto up [network id]
ipsec --auto route

But when I try to ping machines from either sub-network, I get no response.  What I'm missing?  Where can I look for problems?

Thanks for ANY hints   [;)] 

Chris


This thread was automatically locked due to age.
Unfiltered HTML