[Openswan Users] Please help with routing bypassing tunnel
Paul Wouters
paul at xelerance.com
Wed Mar 9 11:24:10 CET 2005
On Wed, 9 Mar 2005, Guy Bullen-Smith wrote:
> If I ping from one end to the other it sometimes goes through the tunnel
> and othertimes not. It seems to depend on the order of entries in the
> routing table.
Not the order, it depends on longest prefix match. The most specific route is
taken first.
> Could you please tell me what to do prevent any network traffic to
> or from the endpoints other than through the tunnel (excepting ARP)?
Make a host route or more specific network route into the physical
interface instead of the ipsecX interface.
Paul
More information about the Users
mailing list