[VPN] IPSec tunnel with Linksys BEFVP41 not passing traffic

John Corey John.Corey at NorwoodSystems.com
Thu Jul 22 23:12:56 EDT 2004 

Thankyou for your suggestion. Yesterday the route between the boxes changed again, it is now 30 hops. Whether or not that is directly the reason I do not know but the tunnel is now passing traffic in both directions again.

John

-----Original Message-----
From: Jean-Francois Dive [mailto:jef at linuxbe.org]
Sent: Thursday, 22 July 2004 8:02 PM
To: John Corey
Cc: vpn at lists.shmoo.com
Subject: Re: [VPN] IPSec tunnel with Linksys BEFVP41 not passing traffic


You should try to get both of the boxes reset (i mean ipsec wise). It
could be due to some lost of synchronization between the 2 peers in term
of phase 2 SA's.

The question is to know if the reply goes out encrypted or not on the AU side.

J.

On Tue, Jul 20, 2004 at 05:22:57PM +0800, John Corey wrote:


> Hello, I hope someone may be able to cast some light on this problem.
> 
> For several months we have had a link between an office in Australia and an office in the UK using a Linksys BEFVP41's with an IPSec tunnel. The link was very much problem free until late last week when it ceased passing traffic. The router shows that the VPN is connected. The VPN logs show connection success though the connection repeats every few seconds. A ping from a host in the UK LAN reaches a host on the Aust LAN and is replied to though the reply does not get back to the UK. (it correctly uses the router as the default gateway) A ping from a host in Australia does not appear on the UK LAN.
> 
> I am wondering if the number of hops from one office to the other may be the problem here but have not been able to locate any information that says it might be. A traceroute initiated in the UK reaches the Aust box after 27 hops, however a traceroute iniated in Australia takes over 30 hops. (approx 34) A Window PPTP VPN works OK over the same path being NATted through the Linksys boxes.
> 
> Any suggestions at all appreciated.
> 
> Regards
> John Corey
> 
> 
> _______________________________________________
> VPN mailing list
> VPN at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/vpn

-- 
--

-> Jean-Francois Dive
--> jef at linuxbe.org

  I think that God in creating Man somewhat overestimated his ability.
    -- Oscar Wilde
_______________________________________________
VPN mailing list
VPN at lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/vpn

More information about the VPN mailing list