[Openswan Users] leftsubnet 0.0.0.0/0
proxy06 at gmail.com
Thu Sep 1 05:05:14 EDT 2011
I am trying to implement the following configuration:
unrouted; eroute owner: #0
... which means that my VPN server (220.127.116.11) is configured to
accept connections from any client and that the left private subnet is
the whole Internet.
I want all client machines, once connected, to send all their traffic
through VPN server.
Configuration file looks as follows:
Now I am configuring another server as a client to pass all the
traffic through the VPN server.
My second server has real Internet IP 18.104.22.168. It is not behind NAT.
Second server configuration file below:
Now if I establish the connection, my second server starts sending ESP
packets through the VPN server 22.214.171.124
I can see it with tcpdump.
The problem is that target server, which has the IP address
126.96.36.199 does not route response through the VPN server
Instead target server tries to communicate directly to the 188.8.131.52
over unencrypted channel
Can anybody please give me an advice? I am new to this IPsec thing. I
will appreciate all your input.
More information about the Users