Hi All,<br><br>Topology<br>++++++++++<br>     eth0                          eth0                  eth1      VPN tunnel                 eth1                      <br>Pc1 ---------------------------------  GW(Strongswan)------------------------------ VPN server<br>
<div id=":3mb">172.31.114.230    172.31.114.231 50.1.1.239                          50.1.1.227</div>                                                                                          (strongswan)<br><br>In this topology , I replaced the GW with Cisco router instead of Strongswan, and I tried pinging from 172.31.114.230 to 172.31.114.231 and its working fine. But the same ping is not working in Strongswan. This seems to a bug in strongswan. Please comment.<br>
<br>SPD rules  in GW(Strongswan)<br>+++++++++++++++++++++<br>   <a href="http://0.0.0.0/0%5Bany%5D" target="_blank">0.0.0.0/0[any]</a> 50.1.1.239[any] any<br>    fwd prio high + 1073739901 ipsec<br>    esp/tunnel/50.1.1.227-50.1.1.<div id=":3mb">
239/unique:1<br>    created: Apr 12 00:38:26 2012  lastused:<br>    lifetime: 0(s) validtime: 0(s)<br>
    spid=1378 seq=1 pid=23592<br>    refcnt=1<br><br><a href="http://0.0.0.0/0%5Bany%5D" target="_blank">0.0.0.0/0[any]</a> 50.1.1.239[any] any<br>    in prio high + 1073739901 ipsec<br>    esp/tunnel/50.1.1.227-50.1.1.239/unique:1<br>
    created: Apr 12 00:38:26 2012  lastused:<br>
    lifetime: 0(s) validtime: 0(s)<br>    spid=1368 seq=2 pid=23592<br>    refcnt=1<br>50.1.1.239[any] <a href="http://0.0.0.0/0%5Bany%5D" target="_blank">0.0.0.0/0[any]</a> any<br>    out prio high + 1073739901 ipsec<br>
    esp/tunnel/50.1.1.239-50.1.1.227/unique:1<br>
    created: Apr 12 00:38:26 2012  lastused:<br>    lifetime: 0(s) validtime: 0(s)<br>    spid=1361 seq=3 pid=23592<br>    refcnt=1</div><br><br>