Hello, I don't need a default route since I adresse only one lan (192.168.50/24) from my vpn client, the VPN gateway has a route to this lan and in the client configuration (safenet on windows) I have just added the LAN 192.168.50 as ip subnet in the "Remote party and Adressing" section. This work's fine because the hosts I join are only in this (192.168.50) LAN.
And I advertise the LAN 192.168.54 because it's a "DMZ LAN" and I have some other gateway's in this LAN, and assigning the clients an IP in this LAN will permit some ip based rules on other gateway's (that's for future use) But this doesn't explain me how i can connect more then one client from the same IP Regard's Claude Toni Mueller-10 wrote: > > Hello Claude, > > On Thu, 23.11.2006 at 02:48:45 -0800, Claude Brassel > <[EMAIL PROTECTED]> wrote: >> [IPsec-clients] >> Phase= 2 >> Configuration= SoftPK-quick-mode >> #Local-ID= default-route >> Local-ID= LAN54 >> Remote-ID= dummy-remote >> >> [ufqdn/[EMAIL PROTECTED] >> Address= 192.168.54.15 >> Netmask= 255.255.255.0 >> >> [ufqdn/[EMAIL PROTECTED] >> Address= 192.168.54.16 >> Netmask= 255.255.255.0 > >> [default-route] >> ID-type= IPV4_ADDR_SUBNET >> Network= 0.0.0.0 >> Netmask= 0.0.0.0 > > You don't seem to use the [default-route] anywhere. Intention, or > accident? > >> [LAN54] >> ID-Type= IPV4_ADDR_SUBNET >> Network= 192.168.54.0 >> Netmask= 255.255.255.0 > > You advertise a route to 192.168.54.0/24 to your clients. You also > assign them IP addresses from the same range, as if your VPN gateway > were a bridge, not a router. > > > Best, > --Toni++ > > > -- View this message in context: http://www.nabble.com/VPN-configuration-for-roadwarrior-tf2691887.html#a7597340 Sent from the openbsd user - misc mailing list archive at Nabble.com.