From: Heiko Z. <hz...@pr...> - 2002-11-27 14:58:44
|
On 11/27/2002 07:09:22 AM "Fred de Klein" wrote: >"022 we have no ipsecN interface for either end of this connection" I had this problem before, but damned, what was it? Guess: There must be a IPSEC interface bound to the interface, where the encry= pted packets actually leave the box. So when you test on eth0, you need to bind IPSEC1 to eth0. The problem could also be, that you have to restart IPSEC once ppp0 is connected, I had to do this on my old router when I used ISDN dialup. Also check you routing table, it could be something "easy". cya Heiko = |
From: Heiko Z. <hz...@pr...> - 2002-11-27 15:12:49
|
On 11/27/2002 10:04:37 AM "Fred de Klein" wrote: >I have the impression I am so close, it just needs to 'click'. I'm sure you are close. >I might want to restart ipsec, so I will give that a try. If that is the trick, add a "ipsec restart" to the ip-up script. This, of course, only makes sense when the ppp is your only tunnel interface, otherwise you kill all other connections. Regards Heiko = |
From: Fred de K. <fre...@io...> - 2002-11-27 15:19:29
|
Heiko, the ppp0 (at the moment) is my only tunnel, so how would I do this, as I seem to have a problem finding the right "restart" command. The command I would normally use would be: ipsec auto --up devil-zara, so, what would that become???? -----Original Message----- From: dev...@li... [mailto:dev...@li...]On Behalf Of Heiko Zuerker Sent: 27 November 2002 15:12 To: dev...@li... Subject: RE: [Devil-Linux-discuss] ipsec connection problem On 11/27/2002 10:04:37 AM "Fred de Klein" wrote: >I have the impression I am so close, it just needs to 'click'. I'm sure you are close. >I might want to restart ipsec, so I will give that a try. If that is the trick, add a "ipsec restart" to the ip-up script. This, of course, only makes sense when the ppp is your only tunnel interface, otherwise you kill all other connections. Regards Heiko ------------------------------------------------------- This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power & Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en _______________________________________________ Devil-linux-discuss mailing list Dev...@li... https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss |
From: Heiko Z. <hz...@pr...> - 2002-11-27 15:43:22
|
Fred, On 11/27/2002 10:18:32 AM "Fred de Klein" wrote: >The command I would normally use would be: >ipsec auto --up devil-zara, >so, what would that become???? To be on the (very) safe side use this: /etc/init.d/ipsec stop /etc/init.d/ipsec start cya Heiko = |
From: Heiko Z. <hz...@pr...> - 2002-11-27 16:05:42
|
On 11/27/2002 10:43:18 AM "Fred de Klein" wrote: >Hi Bjorn, >thanks for that. >When I leave the interfaces=3D%defaultroute it automatically grabs th= e >eth0 interface, which is connected to the LAN, so it will never hook >up with the modem then. >I also tried the restart Heiko advised, however got the same result >unfortunately. bummer I think now it's time for you to contact the FreeS/WAN mailinglist. Regards Heiko = |
From: Fred de K. <fre...@io...> - 2002-11-27 15:05:35
|
Hi Heiko, thanks for that, I have attached ipsec0 to ppp0 in the ipsec.conf file. According to the routing table it looks okay as well. I can blooming even ping the flipping gateway. I have the impression I am so close, it just needs to 'click'. I might want to restart ipsec, so I will give that a try. Thanks for your help. Fred -----Original Message----- From: dev...@li... [mailto:dev...@li...]On Behalf Of Heiko Zuerker Sent: 27 November 2002 14:58 To: dev...@li... Subject: Re: [Devil-Linux-discuss] ipsec connection problem On 11/27/2002 07:09:22 AM "Fred de Klein" wrote: >"022 we have no ipsecN interface for either end of this connection" I had this problem before, but damned, what was it? Guess: There must be a IPSEC interface bound to the interface, where the encrypted packets actually leave the box. So when you test on eth0, you need to bind IPSEC1 to eth0. The problem could also be, that you have to restart IPSEC once ppp0 is connected, I had to do this on my old router when I used ISDN dialup. Also check you routing table, it could be something "easy". cya Heiko ------------------------------------------------------- This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power & Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en _______________________________________________ Devil-linux-discuss mailing list Dev...@li... https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss |