headers
Victor Javier Brizuela | 19 Jan 2010 17:29
Picon

VPNC works for client machines in network but not from Proxy server

Hello,

I am having a strange problem trying to use VPNC. I am able to connect
to a VPN network from both my PC and the proxy server, but on the
proxy server no traffic seems to return.

Here is a connection attempt from my PC (192.168.1.74):

dusty:~# vpnc dasa
VPNC started in background (pid: 11582)...
dusty:~# ping 10.10.20.20
PING 10.10.20.20 (10.10.20.20) 56(84) bytes of data.
64 bytes from 10.10.20.20: icmp_seq=1 ttl=63 time=7.90 ms
64 bytes from 10.10.20.20: icmp_seq=2 ttl=63 time=8.18 ms
64 bytes from 10.10.20.20: icmp_seq=3 ttl=63 time=7.58 ms
64 bytes from 10.10.20.20: icmp_seq=4 ttl=63 time=7.95 ms
64 bytes from 10.10.20.20: icmp_seq=5 ttl=63 time=7.73 ms
^C
--- 10.10.20.20 ping statistics ---
5 packets transmitted, 5 received, 0% packet loss, time 4017ms
rtt min/avg/max/mdev = 7.583/7.871/8.181/0.225 ms

Now, from the proxy server (192.168.2.1):

sphinx:~# vpnc dasa
VPNC started in background (pid: 27469)...
sphinx:~# ping 10.10.20.20
PING 10.10.20.20 (10.10.20.20) 56(84) bytes of data.
^C
--- 10.10.20.20 ping statistics ---
63 packets transmitted, 0 received, 100% packet loss, time 62032ms

Here is the routing table after I run vpnc on the proxy server:

sphinx:~# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
200.45.109.14   200.69.253.78   255.255.255.255 UGH   0      0        0 eth2
200.69.253.64   0.0.0.0         255.255.255.240 U     0      0        0 eth2
200.69.253.0    0.0.0.0         255.255.255.0   U     0      0        0 eth2
192.168.0.0     0.0.0.0         255.255.252.0   U     0      0        0 eth1
0.0.0.0         0.0.0.0         0.0.0.0         U     0      0        0 tun0

That didn't seem to be correct, so I added:
route add -net 10.10.20.0 netmask 255.255.255.0 gw 200.45.109.14 dev tun0

which didn't help.

On the other hand, here is the routing table on my PC after I run vpnc:

dusty:~# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
200.45.109.14   192.168.2.1     255.255.255.255 UGH   0      0        0 eth0
10.10.20.95     0.0.0.0         255.255.255.255 UH    0      0        0 tun0
10.10.20.0      0.0.0.0         255.255.255.0   U     0      0        0 tun0
192.168.0.0     0.0.0.0         255.255.252.0   U     0      0        0 eth0
0.0.0.0         192.168.2.1     0.0.0.0         UG    0      0        0 eth0

I don't get what's going on here. I have the exact same version of
vpnc of both machines (0.5.1, which comes with Debian Lenny) and I'm
using the same configuration file:

DNSUpdate No
IPSec gateway 200.45.109.14
IPSec ID Some_id
IPSec secret Some_passwd
IKE Authmode psk
Xauth username Some_username
Xauth password Some_other_passwd
Target networks 10.10.20.0/24

Anyone has any idea of what could be going on here? I could post a
debug output of vpnc if necessary, only that I didn't want to prolong
an already long email.

BTW, I tried downloading and compiling the latest version of vpnc from
the website but that didn't work either.

Any help would be greatly appreciated. Thanks,

--

-- 
Victor Javier Brizuela
http://w2bh.com.ar/

BOFH excuse #38:
secretary plugged hairdryer into UPS
Permalink | Reply |

Gmane