[Openswan dev] vrf aware ipsec
Anish Verma
averma at netd.com
Wed Apr 27 01:58:06 CEST 2005
I was thinking more from implementation perspective.
But I think using just ipsec it's not possible to solve the problem. One
solution can be create two gre interface on both security gateways and
use each one to create tunnel for one vrf clients.
Anish
On Tue, 2005-04-19 at 08:21, Michael Richardson wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
>
>
> >>>>> "Anish" == Anish Verma <averma at netd.com> writes:
> Anish> In the above case we want to setup two tunnels between PE1
> Anish> and PE2 one each for VPN blue and VPN red. Here client is
> Anish> exactly same.Is there any way by which we can do this.
>
> There is nothing in openswan to support this kind of thing.
>
> or to put it another way, what's it worth to you?
>
> - --
> ] Michael Richardson Xelerance Corporation, Ottawa, ON | firewalls [
> ] mcr @ xelerance.com Now doing IPsec training, see |net architect[
> ] http://www.sandelman.ca/mcr/ www.xelerance.com/training/ |device driver[
> ] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.2 (GNU/Linux)
> Comment: Finger me for keys
>
> iQCVAwUBQmUiEoqHRg3pndX9AQGLGwQA4QUWhXpLL5/X0U0NbpuTMpD8YlFGq+Wr
> pgOahv6VshoRsn7TgiVBGTDeDc5Qu4PeI0KAUPdrUT9edmp0ZO2afGq01fOmiLBI
> AInvYz8p+aPSMxrrUkycvHdIaZeSR0AxF7/09QqO1HGnBvvw4hDWV+fuINRRBhmM
> qK0JizXMwws=
> =4LPm
> -----END PGP SIGNATURE-----
More information about the Dev
mailing list