[Openswan Users] Odd route problem
Gary W. Smith
gary at primeexalia.com
Sun Apr 10 17:28:35 CEST 2005
Hello,
I have a bunch of odd routes at one end of the tunnel that I would like
to access with an ipsec tunnel but I have been running into problems.
I have a couple different subnets on the server side 10.0.0.0/24,
10.0.8.0/24, 10.1.0.0/16 and 10.0.2.0/24. The network that I'm trying
to connect up is 10.0.12.0/24. I added 10.0.0.0/8 to the .conf file and
was able to establish the connection from the server and ping to the
remote network but once I do that all of my requests for the local
network are going through the tunnel. This seems to be an expected side
effect of the 10.0.0.0/8.
Shouldn't ipsec see the 10.0.12.0/24 as a local network? Can I tell it
to ignore 10.0.12.0/24 for all intents and purposes of routing? Kernel
is 2.6 with netkey.
Here is the sniplet for the ipsec.conf file:
conn a-b
type=tunnel
left=66.88.22.81
leftsourceip=10.0.0.254
leftsubnet=10.0.0.0/8
leftid=@serverhost.com
leftnexthop=66.88.22.80
leftrsasigkey=0sAQ...
right=99.22.33.91
rightsourceip=10.0.12.254
rightsubnet=10.0.12.0/24
rightid=@clienthost.com
rightnexthop=99.22.33.90
rightrsasigkey=0sAQ...
auto=start
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20050410/d471847b/attachment.htm
More information about the Users
mailing list