A tunnel between my remote client and server is up, but this is what happens when I try to ping a computer in LAN:
ICMP request reaches the LAN computer and it sends back ICMP reply (confirmed with Wireshark), but that reply never gets back to my client machiine.
Any idea where/why it gets lost?
Need more info?
Thanks
for ANY hint...
----------------------------------------------------------------------------------------------------------------------------
MORE DETAILS:
Since I am just testing, everything is set up in a lab. My m0n0 (WAN if) and client are in the same subnet -
m0n0 (WAN if): x.x.x.143
client: x.x.x.144
their gateway: x.x.x.129
m0n0 (LAN if): y.y.y.1
LAN host: y.y.y.2
When I try to ping a host in LAN (with tunnel UP) from my client in the Firewall Logs I see something like:
time source if destination proto
X aa:bb:cc x.x.x.129 WAN x.x.x.143 type unreac/port ICMP
^ aa:bb:dd .144 IPsec y.y.y.2 type echo/0 ICMP
-------------------------------------------------------------------------------------------------------------------
Could the problem be that m0n0 and clent are in the same subnet?
Any other ideas?