[strongSwan] use remote site for Internet Access
Noel Kuntze
noel at familie-kuntze.de
Sat Jul 12 23:54:19 CEST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hello Federico,
First, look at [1].
Your TS needs to be "particular machine == 0.0.0.0/0".
After you looked at the document, you need to point the default route on that particular machine to the VPN endpoint of site A
and have the VPN endpoint on site B route the traffic from the particular machine to the router.
The router needs to have a route to the particular machine over the VPN endpoint on site B.
[1] https://wiki.strongswan.org/projects/strongswan/wiki/ForwardingAndSplitTunneling
Regards,
Noel Kuntze
GPG Key id: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
Am 11.07.2014 15:17, schrieb Federico Aoun (Madrid):
> Hi,
>
> I have setup a site-to-site VPN (Strongswan on openwrt), I would like a particular machine on site A to access Internet via the router on site B, how would I do that?
>
> Thanks
>
>
> _______________________________________________
> Users mailing list
> Users at lists.strongswan.org
> https://lists.strongswan.org/mailman/listinfo/users
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQIcBAEBCAAGBQJTwa6KAAoJEDg5KY9j7GZYRpQP/iY8VwRlM+a+AIe0ytMI///F
LvIt/Q4Lk8cGFOseOK45mFgFHF0KB/RWqh5yOV/piEhaH5c+VxEbKMHK2xN6TEKf
6YIXpbJG0eN3ulZ5/8HLpEa2Zt1bG+m87Svo4TVg279rsccXVc+a0RR+vdHw8dxx
f/KKkcA0sSaT6+79nFPhm3hXsFPlH0Cb4J/gjAEAvPq3GlKM846vVLP1afYY7mcm
j3s95pC6Zqg6ipcw0ruShd7LpU9tKqZoSrV2uoGGWdpWR1vgDUNQQLkI2RA7BHey
cFLMxkAj5OvoGCiWlSnOCFm8DDmVUlGQQhA5RdfarAtUb1Gj2fzTGbYD/gvay73h
0PwKE0bukYAv3gGC3I2mTnjCRIuPmPsjmpXA/c9yULo10rTtQ62TjFFm2WtB9xys
Km3DYXJEnL8UcHQ8zvpof0R5BOfugScbmVL7smcK1HuPoDzG3heB/i5/3QpjTsQD
sViIlXaQlEsRhfFtv+l7gW48IFxL6/fd+R5NUDcShmNTITAMKeOXPUiI0UM9i/pB
OXzQL528e6QCZ71dlJwlbk6m6vyIl+Rz2MUFi5L3DZqb2/z2HJb/j1gy8QJ5gOgZ
r24wWpx+2EzEPFYtXuanhgRl/sBiLB3ox4pPjooODhgKEOkU/hWYKpaGtBrXiRwM
03s8kzTk2s9RMFXrL2MD
=SOx1
-----END PGP SIGNATURE-----
More information about the Users
mailing list