[Openswan Users] Easy Routing Question
Jae Chang
jc-openswan at jline.com
Tue May 15 11:35:28 EDT 2007
Andy... i appreciate the links. i too have not heard of "ip xfrm
policy," so i have some reading up to do.
Thanks again,
Jae
Andy Gay wrote:
> Jae - check out these threads on the same subject:
> http://lists.openswan.org/pipermail/users/2006-August/010409.html
> http://lists.openswan.org/pipermail/users/2006-August/010463.html
> http://lists.openswan.org/pipermail/users/2006-August/010472.html
>
> A quick fix for your case - you need to run 2 commands once your tunnel
> is up:
> ip xfrm policy add dir in src 10.20.108.0/24 dst 10.20.108.0/24
> ip xfrm policy add dir out src 10.20.108.0/24 dst 10.20.108.0/24
>
> It's quite simple to use a leftupdown= setting to define a custom updown
> script and run those commands from that script.
>
> This is getting to be a real FAQ. Does anyone know how to use this
> mystical passthrough conn approach to solve this? Seems everyone who's
> tried just reports how it failed to have any effect...
>
> - Andy
>
>
More information about the Users
mailing list