[Openswan Users] Routing problems
Anton Raytsin
remaster at termofest.ru
Thu Feb 3 02:08:28 EST 2011
Hi.
I have a problems with my Ubuntu 10.10/openswan server. I have multiple
clients’ networks connected to one server over ipsec. They all can see
the network behind the server, but from that network only one network is
visible (the first one in the ipsec.config file). I can’t access other
networks ‘cause there is no right route to them: server sends requests
to the internet instead of sending them to the right tunnel. Please, I
really need help!
My config:
version 2.0
config setup
nat_traversal=no
virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
oe=off
protostack=netkey
interfaces=%defaultroute
uniqueids=yes
conn %default
keyingtries=0
disablearrivalcheck=no
leftrsasigkey=%dns
rightrsasigkey=%dns
conn Lukovskkon
left=92.X.X.X
leftsourceip=192.168.1.1
leftid=92.X.X.X
leftsubnet=192.168.1.0/24
leftnexthop=%defaultroute
right=83.Y.Y.Y
rightsourceip=192.168.3.1
rightsubnet=192.168.3.0/24
rightid=83.Y.Y.Y
keyexchange=ike
ikelifetime=240m
keylife=3600s
pfs=yes
compress=no
authby=secret
keyingtries=0
auto=start
conn Chelnykon
left=92.X.X.X
leftsourceip=192.168.1.1
leftid=92.X.X.X
leftsubnet=192.168.1.0/24
leftnexthop=%defaultroute
right=79.Z.Z.Z
rightsourceip=192.168.4.1
rightsubnet=192.168.4.0/24
rightid=79.Z.Z.Z
keyexchange=ike
ikelifetime=240m
keylife=3600s
pfs=yes
compress=no
authby=secret
keyingtries=0
auto=start
conn Chelny2kon
left=92.X.X.X
leftsourceip=192.168.1.1
leftid=92.X.X.X
leftsubnet=192.168.1.0/24
leftnexthop=%defaultroute
right=178.W.W.W
rightsourceip=192.168.7.1
rightsubnet=192.168.7.0/24
rightid=178.W.W.W
keyexchange=ike
ikelifetime=240m
keylife=3600s
pfs=yes
compress=no
authby=secret
keyingtries=0
auto=start
More information about the Users
mailing list