[Swan] Routing multiple subnets
Scott Whitten
full772 at gmail.com
Fri May 17 20:54:31 UTC 2019
Hi All,
I'm using Libreswan 3.20 on Ubuntu 16.04. I've configured the following
connection (and it works):
conn site2
left=184.1.1.1
right=65.2.2.2
leftid=184.1.1.1
rightid=65.2.2.2
rightsubnet=10.3.5.0/24
rightsourceip=10.3.5.254
leftsubnet=192.168.2.0/24
leftsourceip=192.168.2.251
ikev2=insist
pfs=no
ike-frag=yes
ike=aes256-sha2,aes128-sha2,aes256-sha1,aes128-sha1,aes256-sha2;modp1024,aes128-sha1;modp1024
phase2alg=aes_gcm-null,aes128-sha1,aes256-sha1,aes128-sha2,aes256-sha2
authby=secret
auto=start
I'm connecting between Libreswan and a Cisco ASA.
There are 2 other subnets I'd like to add to "rightsubnet". If I add them
via: rightsubnets=10.3.5.0/24,10.3.10.0/24,10.3.22.0/24
The subnets are added to the routing table but I can't ping anything. If I
use just the config shown above, I can successfully ping 10.3.5.x hosts.
What am I doing wrong?
Thanks!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20190517/fdc7cc10/attachment.html>
More information about the Swan
mailing list