<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">Rescued from the spam bucket. Please remember to subscribe to the mailing list before posting to it.<div class=""><br class=""><div><br class=""><blockquote type="cite" class=""><div class=""><span class="" style="font-family: -webkit-system-font, 'Helvetica Neue', Helvetica, sans-serif; color: rgb(127, 127, 127);"><b class="">From: </b></span><span class="" style="font-family: -webkit-system-font, 'Helvetica Neue', Helvetica, sans-serif;">Jeremy <<a href="mailto:coughlin.jeremy@gmail.com" class="">coughlin.jeremy@gmail.com</a>></span></div><div class=""><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;" class=""><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif; color:rgba(127, 127, 127, 1.0);" class=""><b class="">Subject: </b></span><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif;" class=""><b class="">Assigned IP not Reflected in Connections to Other Resources</b><br class=""></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;" class=""><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif; color:rgba(127, 127, 127, 1.0);" class=""><b class="">Date: </b></span><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif;" class="">June 21, 2016 at 11:24:58 AM EDT<br class=""></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;" class=""><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif; color:rgba(127, 127, 127, 1.0);" class=""><b class="">To: </b></span><span style="font-family: -webkit-system-font, Helvetica Neue, Helvetica, sans-serif;" class=""><a href="mailto:users@lists.openswan.org" class="">users@lists.openswan.org</a><br class=""></span></div><br class=""><br class=""><div dir="ltr" class=""><div class=""><div class="">Hey All, <br class=""><br class=""></div>Setup an l2tp server using xl2tpd and openswan. Pretty good results so far, but I noticed when connecting to other resources, all of the traffic on the other side of the tunnel is logged as the ipsec host's ip (10.0.0.49), and not the IP assigned to me by the server (in this instance 10.0.102.10). So when I ssh into resources, it lists my connection as having come from 10.0.0.49 etc. Below is my ipsec and xl2tpd config. Any advice? I'm guessing this has nothing to do with openswan and more to do with transforming the traffic as it exits the tunnel and moves to the lan, but figured I'd ask you guys. <br class=""><br class=""></div>-Jeremy<br class=""><div class=""><br class="">conn shared<br class=""> left=10.0.0.49<br class=""> leftid=xxx.xxx.xxx.xxx<br class=""> right=%any<br class=""> forceencaps=yes<br class=""> authby=secret<br class=""> pfs=no<br class=""> rekey=no<br class=""> keyingtries=5<br class=""> dpddelay=30<br class=""> dpdtimeout=120<br class=""> dpdaction=clear<br class=""> ike=3des-sha1,aes-sha1<br class=""> phase2alg=3des-sha1,aes-sha1<br class=""><br class="">conn l2tp-psk<br class=""> auto=add<br class=""> leftsubnet=<a href="http://10.0.0.49/32" class="">10.0.0.49/32</a><br class=""> leftnexthop=%defaultroute<br class=""> leftprotoport=17/1701<br class=""> rightprotoport=17/%any<br class=""> type=transport<br class=""> auth=esp<br class=""> also=shared<br class=""><br class=""><br class="">[global]<br class="">port = 1701<br class=""><br class="">[lns default]<br class="">ip range = 10.0.102.10-10.0.102.250<br class="">local ip = 10.0.102.1<br class="">require chap = yes<br class="">refuse pap = yes<br class="">require authentication = yes<br class="">name = l2tpd<br class="">pppoptfile = /etc/ppp/options.xl2tpd<br class="">length bit = yes<br class=""><br class=""></div></div>
<br class=""><br class=""></div></blockquote></div><br class=""></div></body></html>