[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] VPN using ipsec and openswan

To: list@xxxxxxxxxxxxx
Subject: Re: [LUG] VPN using ipsec and openswan
From: Alex Charrett <alex@xxxxxxxxxxxx>
Date: Mon, 4 Jul 2005 10:59:45 +0100 (BST)

On Mon, 4 Jul 2005, Robin Cornelius wrote:

After the inital startup and logging to syslog the *swans then chuck all debug in /var/log/auth.log OR /var/log/secure, is there any more information and details of what failed in there?


Ah ha!  Cheers, the stuff in /var/log/secure is a lot more helpful :)

The machine that was playing up is behind a firewall (which has ipsec passthrough configured), but I'd mistakenly put the public ip of the firewall rather than the private ip of the ipsec box in left=

rightsubnet
     |
     |  private address
   right
     |  public address
     |
  internet
     |
     |  public address
nat/fw with ipsec passthrough
     |  private address
     |
     |  private address
   left
     |
 leftsubnet


Cheers,
Alex.

--
The Mailing List for the Devon & Cornwall LUG
Mail majordomo@xxxxxxxxxxxxx with "unsubscribe list" in the
message body to unsubscribe. FAQ: www.dcglug.org.uk/linux_adm/list-faq.html

References:
- [LUG] VPN using ipsec and openswan
  - From: Alex Charrett
- Re: [LUG] VPN using ipsec and openswan
  - From: Robin Cornelius

Prev by Date: Re: [LUG] VPN using ipsec and openswan
Next by Date: Re: [LUG] Editing the wiki
Previous by thread: Re: [LUG] VPN using ipsec and openswan
Next by thread: Re: [LUG] Editing the wiki
Index(es):
- Date
- Thread