[strongSwan] Net-to-Net wrong source IP of VPN server.
Tobias Brunner
tobias at strongswan.org
Mon May 2 11:20:33 CEST 2016
Hi Lukas,
> # ip route list table 220
> 192.168.1.0/24 via 1.2.3.1 dev eth0.2 proto static src 1.2.3.4
> #
>
> where 1.2.3.4 is locally attached, publicly reachable IP address and
> 1.2.3.1 is default gw for this public IP address.
Looks strange. The source address should be part of the local traffic
selector (192.168.2.0/24), which 1.2.3.4 is probably not. Please
increase the log level for the knl subsystem to see what's going on
during the route/policy installation [1].
Regards,
Tobias
[1] https://wiki.strongswan.org/projects/strongswan/wiki/LoggerConfiguration
More information about the Users
mailing list