[Openswan Users] routes in openswan and kernel 2.6
Ethy H. Brito
ethy.brito at inexo.com.br
Thu Jun 21 10:22:47 EDT 2007
Hi
I have a working setup with kernel 2.6 (slackware 11) and openswan-2.4.8.
It is composed by 4 machines:
A- leftsubnet machine: 192.168.10.8/24
B- left machine: 192.168.10.254 and a valid internet IP A.B.C.D
C- right machine: 10.25.215.8 and a valid internet IP X.Y.T.Z
D- rightsubnet machine: 10.25.215.254/24
Behind 10.25.215.254 there is another net (172.16.0.0/16) that
192.168.10.8 *must* reach with IP 10.25.215.8. I, then, added a iptables
NAT rule that does the trick.
So, I can ping D (10.25.215.254) from A (192.168.10.8) (NATed to
10.25.215.8) but can't ping 172.16.x.x due to the lack of a route at B
that send those packets thru the ipsec tunnel.
I tried adding this route via 'ip route" but obviously it did not worked.
How can I add this missing route to the net behind D ??
regards
Ethy
More information about the Users
mailing list