Hi All
I've been battling with SME 5.5u6 and a VPN between two servers using Daryls freeswan rpm config.
It seems that I have a VPN between the two servers but an apparent routing issue that prevents me seeing anything inside the end lans.
Traceroute from either server to the other end is completed in a single hop, but traceroute to a machine behind the server shows that its trying to use the external interface and then gets lost in the big bad internet cloud.
I've changed the external #'s here from real to fake but the routes are the same.
server #1 (vpn config as client eth0 is external)
Destination Gateway Genmask Flags Metric Ref Use Iface
255.255.255.255 * 255.255.255.255 UH 0 0 0 eth1
101-43-7-198 110-122-2-113-v 255.255.255.255 UGH 0 0 0 ipsec0
110.122.2.112 * 255.255.255.252 U 0 0 0 eth0
110.122.2.112 * 255.255.255.252 U 0 0 0 ipsec0
192.168.1.0 110-122-2-113-v 255.255.255.0 UG 0 0 0 ipsec0
192.168.152.0 * 255.255.255.0 U 0 0 0 eth1
127.0.0.0 * 255.0.0.0 U 0 0 0 lo
default 110-122-2-113-v 0.0.0.0 UG 0 0 0 eth0
server #2 (vpn config as server eth1 is external)
Destination Gateway Genmask Flags Metric Ref Use Iface
110-112-2-114-v 101-43-7-197 255.255.255.255 UGH 0 0 0 ipsec0
101.43.7.196 * 255.255.255.252 U 0 0 0 eth1
101.43.7.196 * 255.255.255.252 U 0 0 0 ipsec0
192.168.1.0 * 255.255.255.0 U 0 0 0 eth0
192.168.152.0 101-43-7-197 255.255.255.0 UG 0 0 0 ipsec0
127.0.0.0 * 255.0.0.0 U 0 0 0 lo
default 101-43-7-197 0.0.0.0 UG 0 0 0 eth1
Each server is configured to be identical but the routes are slightly different ?
Each server responds in the same manner with ability to ping the other vpn server but not anything behind the server.
Local network is configured with default router, vpn is configured (apparently correctly), the only real difference that I can figure is the use of eth1 vs eth0
I've scoured the forums here but it seems that everyone else has this working out of the box. What I am missing ?
TIA
cheers
Tony
1 Replies
356 Views