[Openswan dev] vrf aware ipsec

Anish Verma averma at netd.com
Wed Apr 27 01:58:06 CEST 2005

I was thinking more from implementation perspective. 

But I think using just ipsec it's not possible to solve the problem. One
solution can be create two gre interface on both security gateways and
use each one to create tunnel for one vrf clients.


On Tue, 2005-04-19 at 08:21, Michael Richardson wrote:
> >>>>> "Anish" == Anish Verma <averma at netd.com> writes:
>     Anish> In the above case we want to setup two tunnels between PE1
>     Anish> and PE2 one each for VPN blue and VPN red. Here client is
>     Anish> exactly same.Is there any way by which we can do this.
>   There is nothing in openswan to support this kind of thing.
>   or to put it another way, what's it worth to you?
> - -- 
> ] Michael Richardson          Xelerance Corporation, Ottawa, ON |  firewalls  [
> ] mcr @ xelerance.com           Now doing IPsec training, see   |net architect[
> ] http://www.sandelman.ca/mcr/    www.xelerance.com/training/   |device driver[
> ] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
> Version: GnuPG v1.2.2 (GNU/Linux)
> Comment: Finger me for keys
> pgOahv6VshoRsn7TgiVBGTDeDc5Qu4PeI0KAUPdrUT9edmp0ZO2afGq01fOmiLBI
> AInvYz8p+aPSMxrrUkycvHdIaZeSR0AxF7/09QqO1HGnBvvw4hDWV+fuINRRBhmM
> qK0JizXMwws=
> =4LPm

More information about the Dev mailing list