[Openswan Users] Tunnel to 0.0.0.0/0 except some addresses
Tuomo Soini
tis at foobar.fi
Mon Nov 28 10:21:33 CET 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Paul Wouters wrote:
> I assume you are using netkey, because with klips this should work fine.
> For netkey, you need on router1:
>
> conn pass-localnet1
> left=ip-router1
> right=ip-router3
Is this 3 up here intentional?
> leftsubnet=localnet1/mask
> rightsubnet=localnet2/mask
> type=passthrough
> auto=route
> authby=never
>
> that should exlude packets from NETKEY between localnet1 and localnet2
>
> Paul
- --
Tuomo Soini <tis at foobar.fi>
Linux and network services
+358 40 5240030
Foobar Oy <http://foobar.fi/>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Foobar - http://enigmail.mozdev.org
iD4DBQFDir4MTlrZKzwul1ERAgiRAJjXl8jQICD6VeJVJiUCNIiM0FhnAJ4uIFNy
ko2Pywc1k7957dBumEN4UA==
=Asg8
-----END PGP SIGNATURE-----
More information about the Users
mailing list