[Openswan Users] I think I need a passthough connection
tis at foobar.fi
Fri Apr 13 14:55:23 EDT 2012
On Thu, 12 Apr 2012 21:41:57 +0000
Chris Patch <chrispatch at intrstar.net> wrote:
> I have a medical clinic with 5mbit feed
> my main connection looks like this
> Internet -------main clinic router------Private fiber--------remote
> clinic router
> Both the main clinic router and remote clinic router run centos-5.8
> with openswan 2.4.15 for the main clinic and 2.6.38 for the remote
> This is the config file from the remote clinic router
> version 2.0 # conforms to second version of ipsec.conf
> # basic configuration
> config setup
> conn %default
> conn newtongrove
> The hosts on 192.168.171.0/24 can talk to anything......EXCEPT the
> inside interface 192.168.171.254. The initial dhcp requests
> work...but dhcp renewals fail. (ip vs udp ?)
> I think I need to define a passthough for the 192.168.171.0/24
> network so it can communicate with 192.168.171.254.
> If I disable ipsec the hosts can communicate with the inside of their
> own firewall.
> Thanks for your advice !
Yes, you really seem to need passthrough connection.
Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <http://foobar.fi/>
More information about the Users