[Openswan Users] openSWAN to Cisco IOS
Peter McGill
petermcgill at goco.net
Wed Nov 15 12:29:50 EST 2006
Christian Brechbühler Wrote:
> On a hunch I changed leftsubnet to 192.168.232.10/32 -- and BINGO! IPsec SA established. So Openswan seems happy, although
> no packets go through. I suspect now it's a routing/firewalling issue.
With leftsubnet 192.168.232.10/32, only that ip address on your end will be able to use the vpn tunnel.
If you want your whole subnet to be able to use it, you must change leftsubnet to 192.168.232.0/24 and have the cisco admin change
your subnet on his end as well.
Peter
More information about the Users
mailing list