[Openswan Users] Openswan peer-to-site with virtual IP on client side
richy at strikegun.de
Tue May 12 09:29:55 EDT 2015
I hope someone can help me with my issue.
I am trying to run a openswan ipsec on a raspberry pi 2 towards a ipsec server.
The tunnel is up and running, but I need to access to the rpi2 from the host site over an virtual IP.
The rpi2 has the local IP: 18.104.22.168/24 and his gateway is 192.168.4.1. The WAN IP is dynamic.
The rpi2 is starting the tunnel towards the server x.x.x.180
It also added the virtual IP to the interface eth0
But I can't reach anything over the connected vpn.
Without the virutal ip, so just the physical IP the vpn works.
It seems that the rpi doesn't know how it can reach the tunnel over virtual ip.
Here is the ipsec.conf
## This side ##
## peer side ##
right=x.x.x.180 # remote peer hostname or IP address
rightsubnet=172.17.0.0/28 # network behind the head end
rightid=x.x.x.180 # this makes setting the PSK much easier
## phase 1 ##
ike=3des-md5;modp1024 # This is the phase 1 policy.
## phase 2 ##
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users