Hi,

I have a weird problem. I have 2 IPsec tunnels between my end points (which have ubuntu 10.10 installed on them), and I want to send ping packets marked with '10' through tunnel 1, and ping packets marked with '20' through tunnel 2.

So, I gave the following command on end-point 1:
# iptables -t mangle -A OUTPUT -p icmp -j MARK --set-mark 10
So now, I guess all outgoing ping packets will be marked with '10' and will use tunnel 1.

When I check end-point 2 (the receiver) I see that the ping packets reach there through tunnel 1. I can see this using tcpdump.

# tcpdump -i eth2
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth2, link-type EN10MB (Ethernet), capture size 65535 bytes
00:19:08.113294 IP 192.168.255.75 > 192.168.255.77: ESP(spi=0xc4a29454,seq=0x19), length 164
00:19:09.121218 IP 192.168.255.75 > 192.168.255.77: ESP(spi=0xc4a29454,seq=0x1a), length 164


However, end-point2 doesn't seem to be sending an acknowledgement or reply to these packets it seems to be receiving.

Is there anything I'm missing here? Can someone please help me out?

Thanks a lot!
Miras