[Openswan Users] 2 or more virtual interfaces defined to 1 physical interface
Paul Wouters
paul at xelerance.com
Wed Oct 15 22:20:33 EDT 2008
On Wed, 15 Oct 2008, Lawrence Manning wrote:
> > In ipsec.conf can you do the following, assign multiple virtual
> > interfaces to a single physical interface?
> >
> > config
> > interfaces="ipsec0=eth0 ipsec1=eth0
> My understanding is this is not possible. At least in openswan 2.4.9
> (probably old) you cannot do this.
It is still not possible. The ipsecX devices are just ways for the
klips module to obtain packets via routing. You only need one per
interface.
> For traffic stats, iptables should probably suffice. There are
> doubtless free tools that can collect this information. You should be
> able to create a iptable rule for your tunnels and collect the stats
> that way.
You could also use L2TP and have pppd do counting/accouting.
Paul
More information about the Users
mailing list