[Openswan Users] PC to Network config Openswan

[Peter McGill]

Fahad Aziz,

It's quite simple really the config is identical to the one you've setup 
(with the exception of the changed public ip), except for one small 
change leave out the (left|right)subnet for the side with no lan.

FYI, this uses the default subnet of: 221.132.xx.xx/32

Then all communications between 221.132.xx.xx and 192.168.xx.xx will use 
the tunnel. If you also want 221.133.xx.xx to use the tunnel when 
talking to 221.132.xx.xx then set (left|right)sourceip=192.168.xx.xx 
where 192.168.xx.xx is the private ip of 221.133.xx.xx.

See the man pages ipsec.conf or the doc/ directory in the openswan 
tarball for more details.

Clear?
If not I can create an example config, or modify yours for you if you 
provide it.

Peter

Fahad Aziz wrote:
> I am able to do  NEt to Net Config using ipsec PSK mode and both private networks are communicating fine ... but problem is another PC with openswan which has only one NIC with global IP .. i need to connect single PC with global IP to another openswan with private network and 2 nics .. such as 
> 
> Openswan 2.4 at Kernel 2.6 Native... (both same)
> 
> SITE 1 - eth0 = 221.132.xx.xx (global) Openswan 
> 
> Site 2 -eth0 = 221.133.xx.xx (glocal) Openswan 
>        -eth1 = 192.168.xx.xx (privte or local)
> 
> how to 221.132.xx.xx communicate with 192.168.xx.xx  , 
> 
> 
> 221.132.xx.xx ---------- 221.133.xx.xx ---- 192.168.xx.xx 
> 
> I tried make alias eth at Site 1 but alias IP can ping but not the global. 
> 
> I am new to Openswan, any hint or suggesstion plz...
> 
> Regards
> 
> .           (O)
> .         \\oOo//  
>        _\\ooOoOoo//_
> ------------------------
> consultant77pk at yahoo.com
> 
> 
>       
> _______________________________________________
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan: 
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>