[Openswan Users] Easy Routing Question
Paul Wouters
paul at xelerance.com
Mon May 21 22:15:53 EDT 2007
On Sun, 20 May 2007, Tuomo Soini wrote:
> > You are probably using netkey, not klips, in which case you need to
> > exclude your local lan if it overlaps with a tunnel by adding a passthrough
> > connection.
> >
> > conn passthrough
> > left=gatewayip
> > leftsubnet=10.20.108.0/24
> > right=0.0.0.0
> > rightsubnet=0.0.0.0/0
> > auto=route
> > authby=never
> > type=passthrough
> Shouldn't this be:
> conn passlan
> left=internalipoffirewall
> leftsubnet=10.20.108.0/24
> right=0.0.0.0
> rightsubnet=10.20.108.0/24
> auto=route
> authby=never
> type=passthrough
Ah yes, left should be the internal IP address.
Paul
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list