From: Sam Sgro (sam_at_freeswan.org)
Date: Tue Dec 17 2002 - 19:19:53 CET
-----BEGIN PGP SIGNED MESSAGE-----
> > Since your own IP appears to be stable enough that you
> > can statically assign it in your connection, you should be able to do
> > the same with "leftnexthop".
>
> The problem is: I've got a static ADSL dialup IP, but the "leftnexthop"
> changes a lot. It seems the ISP loves that. Because of that, until
> recently I permanently changed the "leftnexthop=" IP address, but then
> I found that you can also write %leftnexthop there. And then I have
> again the problem, that I cannot use 2 internet connections, as this
> would imply that I set the defaultroute to both for load balancing -
> and FreeS/WAN complains then about not finding "the" default route.
> Makes me crazy. Do you know a workaround?
Not certain if this can help you, but here's a piece of information. When
using default route-based conns, you can simply sidestep the need to use
nexthop in this fashion:
http://lists.freeswan.org/pipermail/users/2002-November/016275.html
http://lists.freeswan.org/pipermail/users/2002-December/016528.html
Remember, that you can call customized _updown scripts per connection by the
"updown" parameter in ipsec.conf. I don't know of your plans to load-balance
your IPSec connections, so I can't make a specific recommendation.
- --
Sam Sgro
sam_at_freeswan.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.
iQCVAwUBPf9qy0OSC4btEQUtAQFimAQAxqR69PBQ4Jnh488CEplPvnFg/IzMSno5
rE84DvE8aygKoKKTT/bR4HZEJ60rD1BGm/F+f+cOWgyiUKO8Q9wlxthMikw59QUN
OETm4o+1ZPnMUFCKCUP0IkMkapNl+xJVqzC+ndrJB2KMvbNG2UUe7pmFu6KR299B
9hNx9qQBHms=
=hDeB
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Wed Dec 18 2002 - 05:21:04 CET