VPN

has anyone got any idea how to route more than just the specified network ip addresses down a IPSec tunnel. I have attempted it with Static routes but had no success. the current setup i have remote network is 10.0.0.X but i now need some traffic to go to some hosts on 10.1.0.X network with the router on the 10.0.0.X network as the gateway to the additional network segment. If anyone has a solution to this i would love to hear it

Cheers

Vip32

In theory it is as simple as just adding those additional networks to the IPSEC configuration.

sorry for the delay in replying, i know in thory you would just add the aditional networks to the IPSec profile but there is no way to add more than 1 remote address to the profile. any ideas the best way to proceed?

Perhaps just set up a separate tunnel for each network?

same problem here.....

site1 (branch)
=================================================
Internal: 192.168.30.0/24

site2 (main)
=================================================
firewall1
-----------
external: public IP
Internal: 172.16.10.1/24

firewall2
-----------
external: 172.16.10.2/24
 internal: 192.168.45.0/24

- Monowall from site1 connects to firewall1 (192.168.30.0/24 to 172.16.10.1/24)
- Was not able to route traffic to 192.168.45.0/24 by using static routes on the fw in site1
- Currently using Nats on firewall2 (site2) to connect to different hosts behind Fw2

Need to send traffic from 192.168.30.0/24 to 192.168.45.0/24

Any suggestions?

.... it worked (2nd vpn tunnell)
=======================================
- brought up a second vpn tunnel to the same peer for different subnets...
- added a route on firewall1 (main site)..... 192.68.0.0/2 to point to firewall2.....
- added new rules on firewall1 (main site) .... to ecrypt/decrypt traffic and for the new subnets.....

thank you for the idea.......