I setup some IPSEC between 2 networks. From 1 network I can ping the other networks local connection but not anything beyond that. Network A - 10.0.1.1 (loc) 23.23.23.23 (net) Network B - 10.0.2.1 (loc) 44.44.44.44 (net) I''m on local machine 10.0.1.10 on network A, I can ping 10.0.2.1 but I cannot ping a machine on that network ex. 10.0.2.200. I was thinking it probally has to do with masq file but I tried many differnt settings and nothing has worked. Thanks, Kevin
On Fri, 2004-12-10 at 14:32 -0500, Kevin Droz wrote:> I setup some IPSEC between 2 networks. From 1 network I can ping the other > networks local connection but not anything beyond that. > > Network A - 10.0.1.1 (loc) 23.23.23.23 (net) > > Network B - 10.0.2.1 (loc) 44.44.44.44 (net) > > > I''m on local machine 10.0.1.10 on network A, I can ping 10.0.2.1 but I > cannot ping a machine on that network ex. 10.0.2.200. > > > I was thinking it probally has to do with masq file but I tried many > differnt settings and nothing has worked.Without more to go on, I don''t have any immediate ideas -- some clue about what you are running and how you have it configured would certainly help (see http://shorewall.net/support.htm) Be sure to include your IPSEC configuration on both ends. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
On Fri, 2004-12-10 at 11:47 -0800, Tom Eastep wrote:> On Fri, 2004-12-10 at 14:32 -0500, Kevin Droz wrote: > > I setup some IPSEC between 2 networks. From 1 network I can ping the other > > networks local connection but not anything beyond that. > > > > Network A - 10.0.1.1 (loc) 23.23.23.23 (net) > > > > Network B - 10.0.2.1 (loc) 44.44.44.44 (net) > > > > > > I''m on local machine 10.0.1.10 on network A, I can ping 10.0.2.1 but I > > cannot ping a machine on that network ex. 10.0.2.200. > > > > > > I was thinking it probally has to do with masq file but I tried many > > differnt settings and nothing has worked. > > > Without more to go on, I don''t have any immediate ideas -- some clue > about what you are running and how you have it configured would > certainly help (see http://shorewall.net/support.htm) >One thought -- does 10.0.2.200 know how to route to the 10.0.1.0/24 network? -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key