[Openswan Users] Re: Help:subnet-GW-->any-any(Roadworrior)
Paul Wouters
paul at xtdnet.nl
Thu Feb 19 23:58:01 CET 2004
On Thu, 19 Feb 2004, swcims wrote:
> leftsubnet=100.0.0.0/24
> leftnexthop=101.128.32.1
> right=%any
> rightsubnet=0.0.0.0/0.0.0.0
You can't do this. You are saying "the right side is a dynamic IP" together with "all packets per default has to
go to the dynamic roadwarrior".
Basicly, you're trying to tell your gateway to give you ALL its internet traffic. It's a good thing you're
likely have your server reject that conn.
You mean leftsubnet=0/0 to indicate "the whole internet is reachable through this tunnel". But in this case
where you only want to reach 100.0.0.0/24 you don't want to do anything with 0.0.0.0.
Paul
More information about the Users
mailing list