[Openswan Users] ipsec & multicast over gre
Paul Wouters
paul at xelerance.com
Tue Oct 4 05:14:12 CEST 2005
On Mon, 3 Oct 2005, Michael Jurney wrote:
> I'm trying to rebroadcast local traffic across an ipsec tunnel via iptables,
> with the following rule:
>
> iptables -t nat -I PREROUTING -i $INSIDE_IFACE -m addrtype --dst-type
> broadcast -j DNAT --to-destination $REMOTE_BROADCAST
>
> Broadcast packets on the inside network are being caught by the iptables
> rules, but they're not entering the tunnel (no ESP packets to the remote
> gateway are generated). Is there documentation online detailing how to do
> this sort of thing with GRE?
Yup. Ken did a talk about enterprise VPN's at Linux Kongress in 2003:
http://www.xelerance.com/talks/lk2003/
Paul
More information about the Users
mailing list