From: Brian C. <B.C...@po...> - 2006-08-14 13:17:48
|
On Mon, Aug 14, 2006 at 02:39:50PM +0200, Roger.casaponsa wrote: > The VPN is established: > Aug 14 13:46:41 pc racoon: INFO: ISAKMP-SA established > xxx.xxx.xxx.xxx[500]-xxx.xxx.xxx.xxx[500] > spi:a999f999f989990c:8c99999999999941 > Aug 14 13:46:42 pc racoon: INFO: IPsec-SA established: ESP/Tunnel > xxx.xxx.xxx.xxx->xxx.xxx.xxx.xxx spi=19999999999x0004f0) > > but when I try to connect to the other side of the VPN I've got this > result: > > pc:~ # ping xxx.xxx.xxx.xxx > connect: Invalid argument Try: ping -I y.y.y.y x.x.x.x where y.y.y.y is your local address on the IPSec SA. For example, if the SA is for 192.168.1.0/24 to 192.168.2.0/24, and your machine has a local address 192.168.1.1, and the remote host is 192.168.2.1, then ping -I 192.168.1.1 192.168.2.1 If you don't actually have an interface 192.168.1.1 (e.g. you don't have a LAN card on the 'private' subnet) then create a loopback interface for this, e.g. ifconfig lo:0 192.168.1.1/32 > pc:~ # rpm -qa | grep ipsec > ipsec-tools-0.3.3-1.9 Ancient code, which you probably won't find much support for these days :-) Brian. |