[Openswan dev] ipsec mutilple ip connection

[Xu Tingting]

HI,

I have tried to set mutilple ip connection with L2tp-ipsec vpn.
My network :
eth0 MyIP1
eth0:0 MyIP2
eth0:1 MyIP3
My ipsec.conf as following:
===============
version 2.0
config setup
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
oe=off
protostack=netkey
conn L2TP-PSK-NAT
    rightsubnet=vhost:%priv
 #  also=L2TP-PSK-noNAT
conn L2TP-PSK-noNAT
    authby=secret
    pfs=no
    auto=add
    keyingtries=3
    rekey=no
    ikelifetime=8h
    keylife=1h
    type=transport
    left=MyIP1
    leftprotoport=17/1701
    right=%any
    rightprotoport=17/0
   # also=L2TP-PSK-noNAT02
conn L2TP-PSK-noNATo1
    authby=secret
    pfs=no
    auto=add
    keyingtries=3
    rekey=no
    ikelifetime=8h
    keylife=1h
    type=transport
    left=MyIP2
    leftprotoport=17/1701
    right=%any
    rightprotoport=17/0
conn L2TP-PSK-noNAT02
    authby=secret
    pfs=no
    auto=add
    keyingtries=3
    rekey=no
    ikelifetime=8h
    keylife=1h
    type=transport
    left=MyIP3
    leftprotoport=17/1701
    right=%any
    rightprotoport=17/0
============
What's more, i have set PSK for the 3 ips in the ipsec.secrets.
when i start the service of ipsec,it only showd ipsec_setup on MyIP1 in the
ipsec.conf,
==========
#service ipsec restart
ipsec_setup: Stopping Openswan IPsec...
ipsec_setup: Starting Openswan IPsec U2.6.24/K2.6.18-308.11.1.el5xen...
ipsec_setup: multiple ip addresses, using  MyIP1 on eth0
===========
and i only can use MyIP1 to connect the l2tp-ipsec VPN,the other ip doesn't
work.

How could i do to make all the ips i have set in the ipsec.conf work for
the VPN connection.

Thanks,.
-- 
Best regards,

徐婷婷   Tingting Xu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/dev/attachments/20121013/f48f5ec0/attachment.html>