[ previous ] [ next ] [ threads ]
 
 From:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Site To Site Ipsec won't come up
 Date:  Mon, 8 Aug 2005 20:49:50 -0400
On 8/7/05, chris schlaepfer <cssowiso at gmx dot net> wrote:
> Hi,
> Since hours I try to establish a Site to Site IPSEC-Tunnel according to
> the documentation on the m0n0wall-page.
> Unfortunately after the setting-up of the tunnel on the IPSEC-Diagnostic
> page there are no SAD shown "No IPsec security association" and
> therefore I guess it doesn't exist any tunnel. Though there exists two
> entries in SPD

The settings look fine.  I'd start with a general communications issue
troubleshooting.  If you add a rule on both WAN interfaces to permit
ICMP, can you ping m0n01 from m0n02 and vice versa?  If that works,
posting any messages from racoon under Diagnostics -> System Logs
might help.

-Chris