IPv6 readyNote: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

Re: [Users] how to make ipsec tunnel a default gateway ?

From: Fred Mobach (fred_at_mobach.nl)
Date: Mon Jul 08 2002 - 21:02:15 CEST

Kuba Leszewski wrote:
>
> I have a following situation:
>
> subnet A -- gateway A --[ internet ] -- gateway B --[ subnet B / LAN]
> --host C--[ internet]
>
> I would like all the traffic from subnet behind the gateway, to go
> through the tunnel and then through host C and then to the Internet?
> How can I do that ?

You can add a static routing rule on regular interfaces (e.g. eth0) :
- on gateway B the default gateway must be host C

The rest is in the config below. Notice that subnet A is left and subnet
B is right.
conn tripo-tripo
        leftid=4.5.6.193
        left=4.5.6.193
        leftnexthop=4.5.6.1
        leftsubnet=10.42.88.0/22
        rightid=1.2.3.62
        right=1.2.3.62
        rightnexthop=1.2.3.33
        rightsubnet=0.0.0.0/0

The (simple) trick is that all traffic from subnet A is routed because
of
the rightsubnet via the tunnel.

Regards,

Fred 

-- 
Fred Mobach - fred_at_mobach.nl - postmaster_at_mobach.nl
Systemhouse Mobach bv - The Netherlands - since 1976
website : http://fred.mobach.nl
Safe Harbour for encumbered Free and Open Source software and links:
http://apache.dataloss.nl/~fred/
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:20:19 CEST