[vpnc-devel] vpnc tunnel up but no communcation
Abdul Basit
abasit at bnet6.net
Wed Mar 22 05:38:32 CET 2006
Hi, I recently have installed Fedora Core 5 distribution for x86_64. I
have installed vpnc 0.3.3 and
using it to connect, it connects successfully and assign the IP address
as well on tunnel interface,
but i can not communicate with the remote network.
For e.g: I connect to VPN router 12.144.63.100, vpnc starts
communicating and assigned 192.168.32.203
on tun0, here are the dumps with debug set to 2. after vpnc run, i can
not ping to 192.168.32.126 (which is
inside remote network), though i am able to ping to 12.144.63.100.
Can anyone please suggest something? attached are ifconfig, route and
vpnc dumps.
Basit
-- debug log --
[root at localhost ~]# /usr/sbin/vpnc --debug 2 --no-detach /etc/vpnc.conf
Enter username for 12.144.63.100: abdul
Enter password for abdul at 12.144.63.100:
vpnc version 0.3.3
S1
S2
S3
using interface tun0
S4
S4.1
S4.2
S4.3
S4.4
IKE SA selected psk+xauth-3des-md5
peer is using type 130 for NAT-Discovery payloads
peer is using type 130 for NAT-Discovery payloads
S4.5
NAT status: this end behind NAT? YES -- remote end behind NAT? no
NAT-T mode, adding non-esp marker
S4.6
S5
S5.1
S5.2
S5.3
S5.4
Enter Username and Password.
S5.5
NAT-T mode, adding non-esp marker
S5.2
S5.3
S5.6
NAT-T mode, adding non-esp marker
S5.7
S6
NAT-T mode, adding non-esp marker
got save password setting: 0
got pfs setting: 0
Remote Application Version: Cisco Systems, Inc./VPN 3000 Concentrator
Version 4.1.4.Rel built by vmurphy on Apr 28 2004 18:31:58
got address 192.168.32.212
S7
S7.1
S7.2
NAT-T mode, adding non-esp marker
S7.3
S7.4
ignoring responder-lifetime notify
NAT-T mode, adding non-esp marker
S7.3
S7.4
S7.5
S7.6
IPSEC SA selected aes128-sha1
NAT-T mode, adding non-esp marker
S7.7
S7.8
S7.9
VPNC started in foreground...
sending packet: len = 81, padding = 5
sending packet: len = 81, padding = 5
-- debug end
-- ifconfig dump --
[root at localhost crypto]# /sbin/ifconfig
dev9894 Link encap:Ethernet HWaddr 00:12:F0:4F:8E:84
inet addr:192.168.25.2 Bcast:192.168.25.7 Mask:255.255.255.248
inet6 addr: fe80::212:f0ff:fe4f:8e84/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:23383 errors:17 dropped:34 overruns:0 frame:0
TX packets:17241 errors:0 dropped:17 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:72143614 (68.8 MiB) TX bytes:6334438 (6.0 MiB)
Interrupt:17 Base address:0x6000 Memory:dfffb000-dfffbfff
eth0 Link encap:Ethernet HWaddr 00:11:D8:E3:06:BB
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:1573 errors:0 dropped:0 overruns:0 frame:0
TX packets:88 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:105317 (102.8 KiB) TX bytes:17775 (17.3 KiB)
Interrupt:18 Base address:0xc400
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:2409 errors:0 dropped:0 overruns:0 frame:0
TX packets:2409 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:2813424 (2.6 MiB) TX bytes:2813424 (2.6 MiB)
tun0 Link encap:UNSPEC HWaddr
00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:192.168.32.212 P-t-P:192.168.32.212
Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1412 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:26 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:0 (0.0 b) TX bytes:1407 (1.3 KiB)
-- ifconfig end --
-- route dump --
[root at localhost crypto]# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
12.144.63.100 192.168.25.1 255.255.255.255 UGH 0 0 0
dev9894
192.168.25.0 0.0.0.0 255.255.255.248 U 0 0 0
dev9894
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 lo
0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 tun0
[root at localhost crypto]#
-- route ends --
More information about the vpnc-devel
mailing list