[Openswan Users] SOLVED (partially): VPN client IP addressing configuration issues
Paul Wouters
paul at xelerance.com
Sun Sep 7 16:42:07 EDT 2008
On Sat, 6 Sep 2008, Rolando Zappacosta wrote:
> However, most of the hosts I need to reach are on the AAA.0.0.0/8 but if I configure:
> right=AAA.BBB.CCC.DDD
> rightsubnet=AAA.0.0.0/8
> I loose all the connectivity as I loose the reachability of the GW itself.
>
> How can I deal with this?
> Can I add a whole subnet with the excpetion of a single host (the GW)?
Add a 'passthrough' connection. See /etc/ipsec.d/examples/passthrough.conf
> Besides, how can I add multiple subnets at once (kinda rightsubnet="AAA.0.0.0/8, III.JJJ.0.0/16, PPP.QQQ.RRR.0/24)
rightsubnets="aaa.0.0.0/8, iii.jjj.0.0/16, ppp.qqq.rrr.0/24"
Paul
More information about the Users
mailing list