On 2012-02-01, Aner Perez wrote:
> Ok, to answer my own question, it seems like you need a non-encap
> route to the network on the other side of the VPN. If you don't have
> a regular route to that network, you get host unreachable responses.
>
> To test this, I tried adding a route for the spe
Ok, to answer my own question, it seems like you need a non-encap
route to the network on the other side of the VPN. If you don't have
a regular route to that network, you get host unreachable responses.
To test this, I tried adding a route for the specific network being
accessed, pointing to
We have a pair of VPN/firewall systems running 5.0 GENERIC.MP#59 i386
(Lanner FW-7535B). These machines are also running OpenBGP, OpenOSPF,
CARP, pfsync, isakmpd and sasyncd.
Everything seems to be working fine except for VPN traffic. We have
33 active ipsec tunnels set up through isakmpd wh
3 matches
Mail list logo
