* Schulz, Wolfgang wrote on Fri, Jun 29, 2001 at 11:53 +0200:
The tunnel is established but I still cannot ping to the net on the other side.
From what machine to what net? You said you have only two GWs? Behind are more hosts?
I checked the firewall.log for denied packets but couldn't find any entry.
Are you pretty sure you have a log rule for all denied packets?
If I boot the machine with the firewall script and stop afterwards the firewall script by hand the ipsec connection doesn't work too.
Seems like a firewalling problem, ain't? :) Maybe your firewall turns on rp_filter or similar which may cause trouble with IPSec.
What could be the problem with my setup.
Your IPSec works w/o firewall. When you turned firewall on, nothing works. By that it looks really like a firewalling problem. You don't see packets in your file. This looks like another firewall problem (syslogd don't even writes to your file, or a deny/reject rule with logging ist missing or whatever). oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.