[strongSwan] Send all traffic over site-to-site tunnel?
Martin Willi
martin at strongswan.org
Mon Sep 3 09:17:49 CEST 2012
Hi Mark,
> I would like all traffic to be routed over the remote subnet from one
> side of the VPN tunnel, more like a remote access client on one side.
To send traffic to all destinations through the tunnel, configure
left/rightsubnet options accordingly. A 0.0.0.0/0 subnet will cover all
destinations.
> Is there a parameter to put in the configuration that will do this or
> a way to add the route into the routing table?
Extending the route is not sufficient. This is IPsec, negotiated
policies are strictly enforced. Use left/rightsubnet to configure what
to tunnel.
Regards
Martin
More information about the Users
mailing list