[Openswan Users] DHCP/Any Traffic over an established VPN tunnel

Paul Wouters paul at xelerance.com
Thu Oct 8 19:38:36 EDT 2009


On Thu, 8 Oct 2009, Carlos Lopez wrote:

> Yes, I'd like to do that, but only on a dlink or linksys router. I meant that Linksys or dlink device will be trying to do an authentication against the VPN server and get for example the second ip from the VPN server's range, let's say 172.17.0.2, the rest of the IPs will be assigned via DHCP (172.17.0.3-172.17.0.254) to ExternalUsers' Pcs.

You cannot really deal out 172.17.0.X that becomes the router for 172.17.0/24. It might work
in some cases, but its an unstable design to stat from. You could hand out 172.17.0.1 and
tunnel 172.17.1.0/24 via this and hand that out locally. Note that this is using a subnet
tunnel, not l2tp.

Paul


More information about the Users mailing list