I'm with 2.4.8-30.fc6/K2.4.8 (klips).<br>Last week I brought up a ipsec tunnel with a client connecting my network (<a href="http://172.20.20.0/24">172.20.20.0/24</a>) with his (<a href="http://10.100.100.30/32">10.100.100.30/32</a>).<br>
Everything went fine.<br>This week, I've come to find out, 10.100.100.30 is not the actual IP he wants me to send packets too.<br>He wants me to send packets through the tunnel to <a href="http://10.1.2.0/24">10.1.2.0/24</a> and somehow still have them go through the tunnel.<br>
I've connected with probably 20 clients and none of them do it this way -- and it seems to me there's not even a way to do it. Even if I add a route via ip route/route in linux, I can only specify the interface (ipsec0) and then it still won't know which tunnel to go out because that network is unknown to Linux/OpenSWAN.<br>
<br>Is there something I'm missing or is this guy out of his mind? He says he's connected with 6 other vendors with this funky method.<br><br>Thanks<br>-George<br>