<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.2900.2802" name=GENERATOR></HEAD>
<BODY>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2>Hi,</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>It's my first post
to such a list so, thanks for being patient with me.</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>I use CentOS 4.2
with openswan 2.4.</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>I several location
organised as a "star" with one central point and numerous
branches.</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>To route traffic
between remote branches i want to create a tunnel from each BRANCH to the
HUB</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>routing everything
but the local trafic.</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>e.g Branch A:
192.168.10.0/24 <- route 192.168.0.0/16 except local at both
ends -> Hub 192.168.0.0/24</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>this in order to
keep the maintenance cost low.</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>The VPN tunnels work
fine, but it generate an awfull lot of trafic and untimately prevent apps to
work</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>(we can ping but no
email, not TSE....)</FONT></SPAN></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>Any idea on how to
do this ?</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial size=2>Many
thanks</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2>Patrice</FONT></SPAN></DIV>
<DIV><SPAN class=730335512-13012006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><FONT size=2></FONT> </DIV></BODY></HTML>