[Openswan Users] dynamic IPs for hosts

Paul Wouters paul at xelerance.com
Mon May 1 17:41:32 CEST 2006

On Mon, 1 May 2006, John Serink wrote:

> 2 questions:
> 1. When using dynamic IPs for hosts connecting to a
> central VPN site(cisco), how can I identify which host
> has connected after the tunnel comes up? Since its
> dynamic and they all use the same PSK, how can I find
> out which private betwork is behind the current IpsecX
> interface?

You can specify rightid=@string1 and leftif=@string2 in a
connection to differentiate them.

> 2. Is it possible to send OSPF or RIP routing updates
> over an ipsec tunnel?

You will need to encapsulate them using IPIP or GRE.


More information about the Users mailing list