[Openswan Users]

Paul Wouters paul at xelerance.com
Wed Mar 8 17:03:09 CET 2006


On Wed, 8 Mar 2006, "Adrián R. Sanchez" wrote:

> Now, the problem: My client wants an ipsec tunnel that uses the public
> nat addresses of "host a" and "host b", and not the private ones.
>
> How would you do that? I could declare such configuration with no major
> problems, but the packets won't travel through the tunnel.

Noit sure I understand it but:

> This works:
>
> left=200.200.200.1
> leftsubnet=1.1.1.10/32
> right=150.150.150.1
> rightsubnet=2.2.2.10/32
>
>
> This doesn't work:
>
> left=200.200.200.1
> leftsubnet=200.200.200.2/32
> right=150.150.150.1
> rightsubnet=150.150.150.2/32

can't you just add another tunnel that does:

left=200.200.200.2
right=150.150.150.2

?

Paul
-- 
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155


More information about the Users mailing list