[Openswan Users] 2 or more virtual interfaces defined to 1 physical interface
Jennifer Agarwal
jsagarwal at exqss.com
Mon Oct 20 10:12:47 EDT 2008
Paul, and Lawrence,
Thank you for your replies.
Will Openswan be able to support the 2 or more virtual interfaces to 1 physical interface in the future?
Would such a change violate the IPsec protocol or how it was intended to be used?
Thank you,
*********************************
Jennifer Agarwal
President / Principal Engineer
Exquisite Software Solutions, LLC
(240) 483-8619
jsagarwal at exqss.com
*********************************
> Date: Wed, 15 Oct 2008 22:20:33 -0400> From: paul at xelerance.com> To: lawrence.manning at smoothwall.net> CC: jsagarwal at exqss.com; users at openswan.org> Subject: Re: [Openswan Users] 2 or more virtual interfaces defined to 1 physical interface> > On Wed, 15 Oct 2008, Lawrence Manning wrote:> > > > In ipsec.conf can you do the following, assign multiple virtual > > > interfaces to a single physical interface?> > >> > > config> > > interfaces="ipsec0=eth0 ipsec1=eth0> > > My understanding is this is not possible. At least in openswan 2.4.9 > > (probably old) you cannot do this.> > It is still not possible. The ipsecX devices are just ways for the> klips module to obtain packets via routing. You only need one per> interface.> > > For traffic stats, iptables should probably suffice. There are > > doubtless free tools that can collect this information. You should be > > able to create a iptable rule for your tunnels and collect the stats > > that way.> > You could also use L2TP and have pppd do counting/accouting.> > Paul
_________________________________________________________________
Check the weather nationwide with MSN Search: Try it now!
http://search.msn.com/results.aspx?q=weather&FORM=WLMTAG
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20081020/c71e3c72/attachment-0001.html
More information about the Users
mailing list