* Kiggundu Mukasa wrote on Mon, Jun 18, 2001 at 15:48 +0300:
I have the following scenario
Leftnet--left--wilressPublicNet----right--rightnet
What means "wilress" - wireless?
There is no nexthopas lest and right are connected via wireless ethernet.
so right is nexthop for left and left is nexthop for right.
Leftnet and rightnet are public IP networks (i.e. 192.168.x.x)
left and right have eth0 with proper/real Internet IP addresses and eth1 pointing to their respective networks.
left and right are attached directly?
I have tried runnignt he firewall with and without masqerading but even
You cannot masquerade IPSec. If you do masquerading on the routers make sure where this rule aplies and be careful :)
though "ipsec look" and /var/log/messages confirems everting is up and running, I cannot ping from leftnet to rightnet or vice versa.
You got "SA established", yes? You see an tunnel (tun0x..) IPIP dir=in and dir=out? Are you really sure that routing and that table is correct? oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.