IPv6 readyNote: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

[Users] Can not connect from same subnet

From: James Shroads (js_at_shroads.net)
Date: Fri Mar 29 2002 - 22:58:14 CET

How to describe this problem?

Linux 2.4.9-31 / Freeswan 1.96 / x509 patch 0.9.9

For redundancy, my Linux FW has two DSL connections from different
providers. I am running iptables, and have set up source based routing to
use these two links in a load balanced reduntant configuration. This all
works. I then added Freeswan with x509 support. I have a subnet to subnet
configuration working with another gateway. I have a roadwarrior
configuration working with a Windows XP laptop. The roadwarrior can connect
via either IP address to the firewall when he is located away from the
office.

However, when the roadwarrior is in the office, I want him to plug into the
internet on the same subnet as one side of the firewall, and establish a
tunnel to the firewall on that subnet. This does not work. It works fine,
if I send him to the other IP address, but not if I send him to an adjacent
address on the same subnet. I do not want the roadwarrior to connect inside
the firewall, as NAT breaks too many of the video / audio applications.

Any suggestions??

Jay

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:47 CEST