[Swan] XAUTH Split Tunneling
Nels Lindquist
nlindq at maei.ca
Fri Mar 10 21:14:44 UTC 2017
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Way back in 2014 when I was last playing with XAUTH, I inquired into
the state of split tunneling/multinets, and the response was:
> Support for multiple networks on the server side without using
> 0.0.0.0/0 is close to being supported but needs a little work
> still.
What's the state of the art on this front today? My testing with
Shrew Soft VPN client indicates that "leftsubnets= { ... }" directive
doesn't do what I'd hoped, but is there another way?
I *have* come up with a workaround, wherein I set leftsubnet=0.0.0.0/0
and then manually set the topology in the Policy tab of the client,
but it would be nicer to be able to have the topology pushed to the
client during the modecfg transfer.
- ----
Nels Lindquist
<nlindq at maei.ca>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iEYEARECAAYFAljDF0QACgkQh6z5POoOLgTY4QCeOyghxACNCNoD8MVmlnzxKP9v
LZkAn0e4b4+9gB3e7mKKHC/kg6jNAGEm
=evGV
-----END PGP SIGNATURE-----
More information about the Swan
mailing list