[Openswan Users] Proxy arp for virtual IP address
Marcus Better
marcus at better.se
Fri Jun 3 20:43:41 CEST 2005
> so where is 192.168.1.241? left or right? Openswan cannot tell.
I have
left=%defaultroute
in the conn %default section, that should work, right?
And the tunnel is established and working. The address 192.168.1.241 is
automatically added to the eth0 interface, which is very nice.
> It is probably easier to setup an ip alias with 10.* space on it and use
> that to build a tunnel to transport the 192.168.1.0/24 traffic.
Ok. I could do that.
But what if, in a different situation, I have a block of public IP
addresses instead of 192.168.1.0/24, and I want to "extrude" part of
that block to a road-warrior? Then I cannot choose the virtual IP
address at will, it must be from the same subnet.
There are instructions for this in the Openswan documentation,
http://wiki.openswan.org/index.php/AdvancedConfiguration
under "Road Warrior with virtual IP address". It says I should set up a
proxy ARP entry, as I described, but that doesn't seem to work for me.
Marcus
More information about the Users
mailing list