[Openswan Users] config check/advice
Tuomo Soini
tis at foobar.fi
Fri Jul 8 03:10:25 EDT 2011
Richard Pickett wrote:
> Now I'm a little confused. I ended up with that virtual_private line as
> a result of where you said:
>
>> You should disallow 10.0.1.0/24 in your
> virtual_private= line by adding: %v4:!10.0.1.0/24
>
> Now you're saying I shouldn't have it?
No, He just pointed your virtual_private was missing all other necessary
rfc1918 networks. And, btw it had a typo. %v:!10.0.1.0/24 is not correct
syntax.
This is more like it:
virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:!10.0.1.0/24
--
Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <http://foobar.fi/>
More information about the Users
mailing list