[Openswan Users] how can i exclude multiple subnets from one side
Ted Kaczmarek
tedkaz at optonline.net
Sat Sep 18 11:24:44 CEST 2004
That should work, as the more specific route should
always preside.
Ted
On Sat, 2004-09-18 at 10:16, Abdul-Wahid Paterson wrote:
> Right...
>
> You mean by using iptabls -j MARK facility and then using iproute2 to
> create a separte routing table for those subnets and push them through
> eth0??
>
> Thanks
>
> Abdul-Wahid
>
>
>
> On Sat, 18 Sep 2004 10:12:23 -0400, Ted Kaczmarek <tedkaz at optonline.net> wrote:
> > Then mark the subnets and send them to eth0.
> >
> > Ted
> >
> >
> > On Sat, 2004-09-18 at 09:27, Abdul-Wahid Paterson wrote:
> > > IN this case I don't want to drop them...I just want them to go out
> > > through eth0 which is the default route rather than through ipsec0.
> > >
> > > Thanks,
> > >
> > > Abdul-Wahid
> > >
> > >
> > > On Sat, 18 Sep 2004 09:17:16 -0400, Ted Kaczmarek <tedkaz at optonline.net> wrote:
> > > >
> > > >
> > > > On Sat, 2004-09-18 at 08:01, Abdul-Wahid Paterson wrote:
> > > > > Hi,
> > > > >
> > > > > I have a big network with many different class C's, on one of my
> > > > > remote sites I want to be able to have...
> > > > >
> > > > >
> > > > > leftsubnet=192.168.0.0/255.255.0.0
> > > > >
> > > > > but I want to be able to exlude 3 subnets from this...e.g.
> > > > >
> > > > > 192.168.15.0/255.255.255.0
> > > > > 192.168.47.0/255.255.255/0
> > > > > and
> > > > > 192.168.55.0/255.255.255.0
> > > > >
> > > > > is there any way I can exlude mutliple subnets ?
> > > >
> > > > >
> > > > >
> > > > > AW
> > > >
> > > > You could use iptables to just drop the packets, you may also want to
> > > > log them as well. Otherwise you may have to create separate tunnels.
> > > > If their is a way to do such exclusions I am interested as well :-)
> > > >
> > > > Ted
> > > >
> > > >
> >
> >
More information about the Users
mailing list