Are the patches re: "isakmpd broken in 2.8" (-tech list) in 2.8-stable yet?
I CVSed and recompiled last week (29-MAR-2001), but still got no
connectivity between two 2.8-stable boxes.

As soon as the isakmpd flows are established, I lose ssh to the remote
gateway and can't get it back in until I kill the isakmpd and do "ipsecadm
flush" on both ends. I can't ping any hosts in the remote (private) network,
either.

I provide the encap routes, just in case they look right to you guys and I
should look somewhere else.

Thanks for any help,
Jason

gw-main# netstat -nrf encap
Routing tables

Encap:
Source Port Destination Port Proto
SA(Address/Proto/Type/Direction)
gw-remote/24 0 net-main/24 0 0
host-remote/50/require/in
host-remote/32 0 net-main/24 0 0
host-remote/50/require/in
host-remote/32 0 gw-main/32 0 0 host-remote/50/require/in
net-main/24 0 gw-remote/24 0 0
host-remote/50/require/out

gw-remote# netstat -nrf encap
Routing tables

Encap:
Source Port Destination Port Proto
SA(Address/Proto/Type/Direction)
net-main/24 0 net-remote/24 0 0
gw-main/50/require/in
gw-main/32 0 net-remote/24 0 0 gw-main/50/require/in
gw-main/32 0 gw-remote/32 0 0 gw-main/50/require/in
net-remote/24 0 net-main/24 0 0
gw-main/50/require/out

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]