
<div dir="ltr">Hi, <div><br></div><div>Please also send the content of /etc/ipsec.conf and/or /etc/swanctl.conf , /etc/swanctl/swanctl.conf , the file where you defined your site-to-site settings.</div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Jan 13, 2020 at 10:27 AM <a href="mailto:cristiant@newro.co">cristiant@newro.co</a> <<a href="mailto:cristiant@newro.co">cristiant@newro.co</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">

  
  <div>

    <p>Also it ipsec.conf file</p>

    <p># basic configuration<br>

      config setup<br>

              charondebug="all"<br>

              uniqueids=yes<br>

              strictcrlpolicy=no<br>

      <br>

      # connection to paris datacenter<br>

      conn totorum-to-camulodunum<br>

        authby=secret<br>

        left=%defaultroute<br>

        leftid=111.111.111.45<br>

        leftsubnet=<a href="http://172.16.11.0/24" target="_blank">172.16.11.0/24</a><br>

        right=222.222.222.210<br>

        rightsubnet=<a href="http://172.16.15.0/24" target="_blank">172.16.15.0/24</a><br>

        ike=aes256-sha2_256-modp1024!<br>

        esp=aes256-sha2_256!<br>

        keyingtries=0<br>

        ikelifetime=1h<br>

        lifetime=8h<br>

        dpddelay=30<br>

        dpdtimeout=120<br>

        dpdaction=restart<br>

        auto=start<br>

      <br>

    </p>

    <div>On 1/13/20 4:15 PM, Felipe Arturo

      Polanco wrote:<br>

    </div>

    <blockquote type="cite">

      
      <div dir="ltr">Hi,

        <div><br>

        </div>

        <div>Please send us the following information:</div>

        <div><br>

        </div>

        <div>Strongswan configuration and<br>

          Output of:</div>

        <div>iptables-save</div>

        <div>ip xfrm policy </div>

        <div>ip route show</div>

        <div>ip rule show</div>

        <div>ip address show</div>

        <div><br>

        </div>

        <div>Thanks,</div>

        <div><br>

        </div>

      </div>

      <br>

      <div class="gmail_quote">

        <div dir="ltr" class="gmail_attr">On Mon, Jan 13, 2020 at 10:13

          AM <a href="mailto:cristiant@newro.co" target="_blank">cristiant@newro.co</a>

          <<a href="mailto:cristiant@newro.co" target="_blank">cristiant@newro.co</a>>

          wrote:<br>

        </div>

        <blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hello,<br>

          <br>

          I am trying to set up a point-to-point VPN connection between

          two KVM <br>

          hosts running Ubuntu 18.04 LTS.<br>

          <br>

          For struggling fro more then a week to make it work but

          without success.<br>

          <br>

          The tunnel seams to be running but I cannot make the

          connection between <br>

          internal subenets.<br>

          <br>

          Can anyone tell me what iptables rules should I set?<br>

          <br>

          Thank you!<br>

          <br>

          Best regards!<br>

          <br>

          <br>

        </blockquote>

      </div>

    </blockquote>

  </div>


</blockquote></div>