News: This forum is now permanently frozen.
Pages: [1]
Topic: IPSec tunnels to router to IPSec tunnels...lost in the land of IPSec  (Read 1799 times)
« on: July 17, 2009, 17:36:28 »
wescb *
Posts: 8

I'll try to post this as simply as possible because I'm quite lost:

I have a Monowall (all ALIX running 13b15/16) connecting to a remote host via IPSec. All is well and good, a host immediately behind that monowall can ping a host on the other end a vice versa. This same monowall also has IPSec tunnels to other networks. I want those other networks to be able to reach the first "remote host" via the single endpoint on the first monowall. Is this possible? I setup the tunnel with the first monowall as the endpoint but am having no joy.

remote host <----IPSEC tunnel-----> first monowall <---LOCAL----> host on local subnet <--/-/--IPSEC tunnel---/--/--/--> host joined to first monowall via IPSEC can reach first monowall but not "remote host"

Note everything can reach "first monowall" but the 2nd IPSec'd node cannot reach the "remote host"

Perhaps my tunnels need to be configured differently than I'm using to connect the first monowall to the remote host?

Thanks for all your help in advance, please post if you need clarification on anything, I know it's a cluster.

Wes
« Reply #1 on: July 17, 2009, 20:04:18 »
CSchwadorf *
Posts: 12

If I understand you correct, you can try the tip "15.26.1. Summarizing the subnets using a larger mask" described in the faq on your "2nd IPSec'd node".
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines