[Openswan Users] Odd route problem
Paul Wouters
paul at xelerance.com
Mon Apr 11 12:33:23 CEST 2005
On Sun, 10 Apr 2005, Gary W. Smith wrote:
> I have a couple different subnets on the server side 10.0.0.0/24,
> 10.0.8.0/24, 10.1.0.0/16 and 10.0.2.0/24. The network that I'm trying
> to connect up is 10.0.12.0/24. I added 10.0.0.0/8 to the .conf file and
> was able to establish the connection from the server and ping to the
> remote network but once I do that all of my requests for the local
> network are going through the tunnel. This seems to be an expected side
> effect of the 10.0.0.0/8.
It is not a side effect, but an effect. You are saying that 10/8 lives
elsewhere.
> Shouldn't ipsec see the 10.0.12.0/24 as a local network? Can I tell it
> to ignore 10.0.12.0/24 for all intents and purposes of routing? Kernel
> is 2.6 with netkey.
Try:
conn skipme
left=10.0.12.0/24
right=0.0.0.0/0
type=passthrough
authby=never
auto=route
Paul
More information about the Users
mailing list