R: [Openswan Users] VPN on Multiple DLS router
Radek Antoniuk
r.antoniuk at pixel.com.pl
Fri Jun 2 16:18:47 CEST 2006
Federico wrote:
>>________________________________________
>>Da: Prepaid [mailto:prepaid at gmail.com]
>>Inviato: venerdì 2 giugno 2006 3.25
>>A: Federico; users at openswan.org
>>Oggetto: Re: [Openswan Users] VPN on Multiple DLS router
>>
>>
>>On 6/1/06, Federico <fviel at comune.belluno.it> wrote:
>>Indeed… I have to generate VPN traffic from LL interface. I thought to use
>>
>>
>leftnexthop="LL default gateway" on gw ipsec.conf but…
>
>
>>You have left=LL IP address and leftnexthop=LL default gateway?
>>
>>
>
>Exactly!!!
>
>
>
>>If you do ping -I LLIPADDRESS remote vpn tunnel are you able to ping the
>>
>>
>remote vpn tunnel using the interface you want to dedicate to only VPN
>
>
>>traffic?
>>
>>
>
>No I can’t!
>As I can't ping the public interface I want to dedicate to VPN traffic from
>outside (internet)…
>This is the issue!!
>I just would like that the traffic coming IN from say eth3 was responded
>from eth3…. But how to do that???
>I mean, if I ping IP_ON_ETH3 from outside (any ip) I’d like to respond
>through IP_ON_ETH3 by eth3….
>Can you help me??
>
>
Have you tried "ip rule add from x.y.z to x.yz lookup table xyz" ?
I had similar configuration , accomplished by mistake in routing
configuration in fact ;)
--
Best regards,
Radek Antoniuk
More information about the Users
mailing list