From: Chris Malott (cmalott_at_travelconnection.com)
Date: Sun Nov 10 2002 - 02:02:01 CET
Geeeeeez, now I've gone and done it. VPN Connection links fine and routes packets correctly between my two security certs, road-warrior connections work wonderfully. Just one BIG problem. My company has a trust relationship with another company that we do business with. The have a router located at our HQ which routes packets to and from our network to theres, so our staff can have access to their resources. Staff at our HQ can connect great, but, staff at our external office, can't.
How do a build an additional route from our remote office to there office, over the connection already established to our HQ.
I need it to look like this;
currently this works:
10.1.64.0/18 > SG -----inet-----SG < 192.168.0.0/16
ontop of this existing connection I need:
if ip = XXX.XXX.XXX.XXX route via SG1 to SG2 then via 192.168.0.10(other company router) to XXX.XXX.XXX.XXX
10.1.64.0/18 > SG1 -----inet-----SG2 < 192.168.0.0/16
I did't anticipate this ahead of time (stupid) and now I have a guy down in our remote office, sitting on a broke system.
Chris
I did this:
529 10.1.64.0/18 -> XXX.XXX.XXX.XXX/24 => tun0x1008_at_208.186.73.51
15 10.1.64.0/18 -> 192.168.0.0/16 => tun0x1006_at_208.186.73.51
packets come in and hit 10.1.64.1, but as soon as they hit, even though there is a record in 10.1.64.1's routing table that says, if you want to go to XXX.XXX.XXX.XXX do it via 192.168.0.10. It doesnt work
Chris
This message was checked by MailScan for WorkgroupMail.
www.workgroupmail.com
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Mon Nov 11 2002 - 05:20:38 CET