[Openswan Users] Real Life example for passthroug conn
Paul Wouters
paul at xelerance.com
Wed May 23 14:31:20 EDT 2007
As people requested this a few times, here is an example of a working
passthrough connection.
In my case, I have an "extrusion", meaning a tunnel with 193.110.157.30 as
leftsubnet and 0.0.0.0/0 as rightsubnet. Now I have another subnet that
terminates on this server, 76.10.144.0/29. Without a passthrough route,
the conn for my extrusion is picked and this is of course wrong. The
passthrough conn is:
conn passthrough-subnet
# my own public ip
left=206.248.139.105
# the subnet routed to me via my public ip
leftsubnet=76.10.144.0/29
# this is needed for auto=route
leftnexthop=206.248.154.102
right=0.0.0.0
rightsubnet=0.0.0.0/0
authby=never
auto=route
type=passthrough
This conn now enables people to reach 76.10.144.6 (which is the same ipsec
gateway box as left - in fact this ip is an alias on br0, the internal
interfaces)
Paul
More information about the Users
mailing list