[GRLUG] Routing through IPSec VPN
Godwin
godwin at grandrapids-lug.org
Thu Mar 19 10:19:56 EDT 2009
G'morning!
Here's a scenario I'm looking at... I run OpenSwan on Linux connected to a
few other devices (the one on topic is a Cisco). I have one VPN like so:
me: 192.168.38.0/24 other: 192.168.5.0/24
There's a printer at 192.168.5.40 which I can access. The "other" side also
has a subnet 10.100.50.0/24 on their end, to which - of course - I have no
access. They setup a new printer at 10.100.50.52 and want me to access it.
So, I *should* be able to add a route to the 10.x subnet and send it via
192.168.5.1, which the box should know how to reach because of the vpn.
Well, I can't.
---------------------------------------------------------------------------------------------------
[me at gateway dude]# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
<omit>
192.168.5.0 my.def.gw.ip 255.255.255.0 UG 0 0 0
ipsec0
<omit>
[me at gateway gpena]# route add -net 10.100.50.0 netmask 255.255.255.0 gw
192.168.5.1 dev ipsec0
SIOCADDRT: Network is unreachable
[root at gateway dude]# route add -net 10.100.50.0 netmask 255.255.255.0 gw
192.168.5.1
SIOCADDRT: Network is unreachable
[root at gateway dude]#
---------------------------------------------------------------------------------------------------
In my mind, it's both logical and should be possible. Then again, this is
the same mind that told me it was okay to have 6 kids... ;-)
Any thoughts?
G-
--
Ubber::Geek
http://grlug.org/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shinobu.grlug.org/pipermail/grlug/attachments/20090319/75fd4e06/attachment.htm
More information about the grlug
mailing list