VPN IPsec Help

Matheus Weber da Conceição matheuswcon at gmail.com
Thu Jul 8 14:00:28 UTC 2010


> It has been a long time since I've done IPSec on FBSD, but I'm willing
> to bet that this has to do with routing, possibly amongst other things.
> On peer 'B' (FBSD box), what internal IP range are you trying to access
> the A network from...the same ones (ie. are you trying to bridge the
> networks)?
>
The -peer A- doesn't need to access any -peer B- networks.

> Do you have access to the Cisco gear?
No.

> If so, on FreeBSD, post the output of:
>
> % netstat -rn

Notes:
tun0 is my ppp pseudo-device
tun5 is my openvpn tunel (192.168.5.0/24)
============
# netstat -rn
Routing tables

Internet:
Destination        Gateway            Flags    Refs      Use  Netif Expire
default            201.zzz.zzz.zzz    UGS         0 16087385   tun0
127.0.0.1          127.0.0.1          UH          0   357142    lo0
187.yyy.yyy.yyy    127.0.0.1          UH          0      120    lo0
192.168.1.0        ff:ff:ff:ff:ff:ff  UHLWb       1        1    vr1 =>
192.168.1.0/24     link#3             UC          0        0    vr1
192.168.1.1        00:19:5b:71:9b:ed  UHLW        1   237725    lo0
192.168.1.8        00:21:97:7e:0c:2a  UHLW        1    27981    vr1    975
192.168.1.9        00:27:0e:10:8d:52  UHLW        1    33571    vr1    956
192.168.1.11       00:16:3e:2a:38:2b  UHLW        1   255820    vr1   1192
192.168.1.21       00:19:d1:7c:a2:90  UHLW        1    24792    vr1   1165
192.168.1.22       00:1c:c0:ac:8e:16  UHLW        1     2306    vr1   1179
192.168.1.28       00:1a:92:e2:ab:fa  UHLW        1    22897    vr1    269
192.168.1.30       00:11:d8:91:36:ff  UHLW        1    36286    vr1    543
192.168.1.31       00:e0:4c:51:b7:e0  UHLW        1     4784    vr1   1167
192.168.1.40       00:1c:c0:54:c1:de  UHLW        1   136462    vr1   1159
192.168.1.43       00:16:76:17:68:9c  UHLW        1        8    vr1    838
192.168.1.44       00:1a:92:d7:4c:ce  UHLW        1     1746    vr1    715
192.168.1.48       00:1c:c0:a6:10:66  UHLW        1    26086    vr1    681
192.168.1.53       00:16:76:86:cd:ba  UHLW        1    10230    vr1   1167
192.168.1.56       00:1c:c0:98:cd:9c  UHLW        1    14848    vr1    911
192.168.1.62       00:16:76:45:04:03  UHLW        1    42472    vr1    966
192.168.1.69       00:16:3e:46:6b:3a  UHLW        1       14    vr1    964
192.168.1.71       00:1c:c0:48:4c:7f  UHLW        1   105652    vr1   1134
192.168.1.72       00:1c:c0:4e:da:d0  UHLW        1    77087    vr1    287
192.168.1.76       00:1e:8c:95:ae:98  UHLW        1     8366    vr1    940
192.168.1.77       00:1c:c0:7b:0d:74  UHLW        1    37699    vr1    281
192.168.1.78       00:1a:92:d7:48:2c  UHLW        1    45100    vr1    567
192.168.1.79       00:1a:92:8a:b2:b2  UHLW        1     4275    vr1    766
192.168.1.84       00:24:1d:f1:89:1f  UHLW        1    21246    vr1    960
192.168.1.87       00:19:d1:ff:0e:6e  UHLW        1      474    vr1   1149
192.168.1.93       00:1c:c0:48:4c:58  UHLW        1    37041    vr1   1191
192.168.1.94       00:21:27:d1:ac:f3  UHLW        1       25    vr1    879
192.168.1.95       00:1c:c0:54:c2:e6  UHLW        1    20753    vr1    969
192.168.1.100      00:1a:92:cb:c9:26  UHLW        1   256433    vr1   1192
192.168.1.103      00:13:02:02:69:00  UHLW        1    52018    vr1   1199
192.168.1.108      00:1c:c0:7b:0d:c4  UHLW        1   708959    vr1    973
192.168.1.112      00:1e:65:68:0c:32  UHLW        1     2133    vr1   1186
192.168.1.115      00:1c:c0:9e:23:74  UHLW        1      583    vr1    367
192.168.1.120      00:18:8b:e1:96:c7  UHLW        1   310668    vr1     68
192.168.1.122      00:27:0e:15:9b:bc  UHLW        1    71300    vr1   1169
192.168.1.123      6c:f0:49:f7:fa:87  UHLW        1     5818    vr1   1113
192.168.1.124      00:1c:c0:7b:0d:85  UHLW        1     2473    vr1    633
192.168.1.126      00:1c:c0:a6:10:5a  UHLW        1    10526    vr1    954
192.168.1.131      00:1f:d0:fd:dd:66  UHLW        1   184009    vr1    943
192.168.1.141      00:1b:fc:2b:99:fe  UHLW        1   435409    vr1    485
192.168.1.144      00:27:0e:10:5a:21  UHLW        1   866092    vr1    957
192.168.1.146      00:1c:c0:9e:23:93  UHLW        1   764742    vr1   1168
192.168.1.149      00:16:3e:73:6b:e3  UHLW        1    26347    vr1   1139
192.168.1.150      00:1c:c0:48:4c:44  UHLW        1    45845    vr1    966
192.168.1.158      00:01:6c:ff:88:c4  UHLW        1    10017    vr1   1033
192.168.1.168      00:19:d1:a1:da:8d  UHLW        1    22734    vr1   1120
192.168.1.170      00:1c:c0:5b:36:4d  UHLW        1   475881    vr1   1186
192.168.1.172      00:24:1d:fb:35:ed  UHLW        1   431062    vr1   1182
192.168.1.173      00:1c:c0:54:bb:a8  UHLW        1        6    vr1   1058
192.168.1.174      6c:f0:49:f8:b6:bf  UHLW        1   297497    vr1   1181
192.168.1.175      6c:f0:49:f7:f9:97  UHLW        1     1809    vr1   1132
192.168.1.177      00:1c:c0:71:8c:c1  UHLW        1    22740    vr1   1050
192.168.1.178      00:1e:8c:95:ad:cd  UHLW        1   136704    vr1    288
192.168.1.187      00:1c:c0:76:48:5e  UHLW        1     5091    vr1   1148
192.168.1.189      00:1d:60:03:a9:c3  UHLW        1        1    vr1    723
192.168.1.197      00:1b:fc:1b:7a:c0  UHLW        1    50767    vr1   1171
192.168.1.200      00:19:d1:21:2d:07  UHLW        1     2850    vr1   1128
192.168.1.220      00:1c:c0:48:4d:13  UHLW        1    23607    vr1    958
192.168.1.223      00:1c:c0:a4:70:c4  UHLW        1    84310    vr1    826
192.168.1.251      00:1c:c0:54:c3:ac  UHLW        1   387597    vr1    826
192.168.1.252      00:08:54:12:36:11  UHLW        1      905    vr1    845
192.168.1.253      00:1c:c0:21:e7:fc  UHLW        1       14    vr1    826
192.168.1.255      ff:ff:ff:ff:ff:ff  UHLWb       1        1    vr1
192.168.5.0/24     192.168.5.2        UGS         0        0   tun5
192.168.5.1        127.0.0.1          UH          0        0    lo0
192.168.5.2        192.168.5.1        UH          1        7   tun5
192.168.254.0/24   link#2             UC          0        0    vr0
192.168.254.11     127.0.0.1          UH          0        0    lo0
192.168.254.255    ff:ff:ff:ff:ff:ff  UHLWb       1        1    vr0
201.zzz.zzz.zzz    187.yyy.yyy.yyy    UH          0        0   tun0

Internet6:
Destination                       Gateway                       Flags
    Netif Expire
::1                               ::1                           UHL         lo0
fe80::%lo0/64                     fe80::1%lo0                   U           lo0
fe80::1%lo0                       link#5                        UHL         lo0
ff01:5::/32                       fe80::1%lo0                   UC          lo0
ff01:6::/32                       link#6                        UGC        tun0
ff02::%lo0/32                     fe80::1%lo0                   UC          lo0
ff02::%tun0/32                    fe80::21c:c0ff:fe54:bba9%tun0 UGC        tun0
============


Thanks;
-- 
============================
Matheus Weber da Conceição


More information about the freebsd-questions mailing list