|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Alexey Vatchenko (av
bsdua.org)
Date: Sat Mar 01 2008 - 10:41:29 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Office gateway:
# cat /etc/ipsec.conf
ike passive esp from 192.168.0.0/24 to any local egress dstid
avbsdua.org psk xxx
Home gateway:
# cat /etc/ipsec.conf
ike dynamic esp from egress to 192.168.0.0/24 peer OFFICE_GATEWAY srcid
avbsdua.org psk xxx
So, if on home gateway i specify "from any to 192.168.0.0/24", office
gateway creates flow:
flow esp in from 0.0.0.0/0 to 192.168.0.0/24 ...
But if i use "from egress to 192.168.0.0/24" then all works as expected:
flow esp in from HOME_GATEWAY to 192.168.0.0/24 ...
So, making changes in home gateway configuration i can influence on how
traffic goes in office network! I think it's not desired behavior.
Anyway, thanks to all for the help!
--
Alexey Vatchenko
http://www.bsdua.org
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]