Find the answer to your Linux question:
Results 1 to 2 of 2
Hi all! I hope you can help me with this problem. I have this working ipsec connection in my Debian server: Code: #### conn TEST_1 type=tunnel auto=start auth=esp authby=secret pfs=no ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Sep 2012
    Posts
    1

    Help - IPSEC routing!


    Hi all!
    I hope you can help me with this problem.

    I have this working ipsec connection in my Debian server:

    Code:
    ####
    conn TEST_1
    type=tunnel
    auto=start
    auth=esp
    authby=secret
    pfs=no
    left=192.168.2.1
    leftid=201.XX.XX.XXX
    leftnexthop=192.168.2.254
    leftsubnet=192.168.1.0/24
    right=200.250.XXX.XXX
    rightsubnet=10.101.4.0/22
    # Fase 01
    keyexchange=ike
    ike=aes128-sha1-modp1024
    ikelifetime=7200s
    # Fase 02
    esp=aes128-sha1
    keylife=7200s
    rekey=yes
    keyingtries=%forever
    ####
    I can ping normally the hosts on 10.101.4.0/22 segment.
    But now i have to ping other host => 10.143.6.188, at the 10.143.4.0/22 segment.

    It is in the same Tunnel, i need to add a route, right?

    How can i do this?

    **Its a Debian OS with shorewall and OpenSwan.


    Thank you!
    Last edited by MikeTbob; 09-25-2012 at 02:26 PM. Reason: Added code tags

  2. #2
    Just Joined!
    Join Date
    Aug 2012
    Posts
    15
    You can specify multiple remote NETWORKS as a space-separated list.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •