View Single Post
  #1   (View Single Post)  
Old 25th May 2012
polken polken is offline
Port Guard
 
Join Date: May 2012
Posts: 12
Default IPSec VPN configuration?

sparky im new to all of this thinks to i have just put a configuration over Ipser VPN server the clients its a cisco im wondering if u can help me out with configuration im lost becose the cisco connect and the ip phone works ok but the phone its on net 192.168. and there is another ip device with another ip 172.1. but i can not reach the 172 ips over the cisco side so im not sure if there can only pass one network over on vpn tunnel

FLOWS IN
ip device
172.1.... ??-----> |------172.1.0.x
ip device ===>CISCO====>OBSD--+------192.1.0.x
192.168.. OK---->
NET
10.0.0... OK---->

FLOWS OUT
ping 172.1.100.7
no reply
ip device
172.1<<--XXX FAIL |------172.1.0.x
ip device ===>CISCO====>OBSD--+------192.1.0.x
192.168.. ?<----
NET
10.0.0... ?<----

ipsec.conf
ike passive esp from any to {192.168.0.0/16, 10.0.0.0/16, 172.1.0.0/16} peer any \
main auth hmac-sha1 enc aes-128 group modp1024 \
quick auth hmac-sha1 enc aes-128 psk 1234ABCDEEF

ike passive from {192.168.0.0/16, 10.0.0.0/16, 172.1.0.0/16} to any \
main auth hmac-sha1 enc aes-128 group modp1024 \
quick auth hmac-sha1 enc aes-128 psk 1234ABCDEEF

sorry to ask but i have asked misc before and they just kick my ass
Reply With Quote