Date: Fri, 5 Dec 2003 15:02:16 -0500 From: "Tom Thompson" <tomt@callcds.com> To: Tom Thompson <tomt@callcds.com>, Matthew Faircliff <matt@databias.co.za> Cc: questions@freebsd.org Subject: Re: IPSEC Tunnel Routing question Message-ID: <200312051502.AA14942906@callcds.com>
next in thread | raw e-mail | index | archive | help
I think I figured out the problem but am unsure how to fix it To recap my situation is as follows Internet connection located in Building A(independent of BSD boxes) FreeBSD 5.1 machine located at Building A FreeBSD 5.1 machine located at Building B Building-To-Building wireless between building A and Building B Goal All traffic NOT destined for the local area lan at Building B should go thru a VPN tunnel over the wireless link to building A and out its internet connection. The problem Building B's BSD box does not know to encrypt traffic to the internet and send it thru the vpn. My ipsec.conf has spdadd building B/subnet building A/subnet any -P out ipsec and the reverse The traffic to the internet is not sent over the VPN so it goes nowere I have tried spdadd building a/subnet 0.0.0.0/0 any -P out ipsec and the reverse Now all traffic is encrypted EVEN traffic destined for the LAN Anyone have any suggestions Thanks Tom
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200312051502.AA14942906>