[Openswan Users] Cannot make openswan working...

Andriy Lesyuk s-andy at in.if.ua
Wed Apr 30 16:37:08 EDT 2008

>>> /I wonder if someone can answer on the question: Can be used on the client side if is used on the
>>> /server side?
>> General routing rules apply.
>> As long as there are no hosts in the subnet then everything will work fine,
>> as ip routing will choose the most specific route for each packet. For example:
>> (bad subnet: (ok subnets:,,,
>> 	|
>> [openswan server]
>> 	|
>> Internet
>> 	|
>> [remote router]
>> 	|
>> 	|
>> [l2tp (windows/mac/linux) client]
>> You may also need to set one of the following on the server:
>> virtual_private=%v4:,%v4:,%v4:,%v4:!,%v4:!,%v4:,%v4:!
>> virtual_private=%v4:,%v4:,%v4:,%v4:!,%v4:!,%v4:!,%v4:!
>> Peter McGill
> What if is used on the server too? No way? Sorry for 
> my ignorance but till now I worked only with OpenVPN. I guess this is 
> due to ESP, right? My home router does supports IPSec passthrough so 
> possibly I must be able to connect without NAT-T?
Just one more question... PPTP (as an alternative to IPSec/L2TP) can be 
used in local network for providing Internet access (like PPPoE). In 
this case the client connects from the zone which is actually used on 
the server. So I wonder if IPSec/L2TP can be used as VPN over Ethernet?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080430/2ba01c1e/attachment.html 

More information about the Users mailing list