LARTC - Apr 2007 - Routing Question

Hi, Somebody can help me , i have a linux gateway running ipsec, so if i ping a
host on a remote ipsec network from gateway packet goes out with external ip
address of gateway , is there a way that packets going from gateway to a remote
network be sourced from internal gateway ip ?

Thanks in advance
Fernando

_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Hi Fernando,
>Hi, Somebody can help me , i have a linux gateway running ipsec, so if
>i ping a host on a remote ipsec network from gateway packet goes out
>with external ip address of gateway , is there a way that packets going
>from gateway to a remote network be sourced from internal gateway ip ?
>
>Thanks in advance
>Fernando
I do not know what your setup and exact needs are, but have you
tried the "src" option of the "ip route" command?

Example:

ip route add dev eth1 192.168.1.0/24 src 10.0.1.1
                                     ^^^^^^^^^^^^

The routing code uses the primary IP address of the outgoing
interface, unless you explicitly configure the preferred
source address (as in the example above).

Regards
/Christian
[http://benve.info]

Hi, my setup is :


192.168.80.0/24 ---- > ( eth1:192.168.80.254 ) Linux ipsec Router 
(ppp0/ipsec0) ----> [ internet ] <-----Sonicwall (192.168.1.1) <-----  
192.168.1.0/24


When a pc in 192.168.80.0/24 pings anything on 192.168.1.0/24 it works
When Linux Ipsec Router pings anything on 192.168.1.0/24 it doesnt works, 
ping packet goes trough default route because packet originates on eth1

some time ago i made a script using a 2nd route table but i cant find it or 
remember





----- Original Message ----- 
From: "Christian Benvenuti" <christian.benvenuti@libero.it>
To: <lartc@mailman.ds9a.nl>
Sent: Friday, April 06, 2007 7:29 PM
Subject: [LARTC] Re: Routing Question

> Hi Fernando,
>
>>Hi, Somebody can help me , i have a linux gateway running ipsec, so if
>>i ping a host on a remote ipsec network from gateway packet goes out
>>with external ip address of gateway , is there a way that packets going
>>from gateway to a remote network be sourced from internal gateway ip ?
>>
>>Thanks in advance
>>Fernando
>
> I do not know what your setup and exact needs are, but have you
> tried the "src" option of the "ip route" command?
>
> Example:
>
> ip route add dev eth1 192.168.1.0/24 src 10.0.1.1
>                                     ^^^^^^^^^^^^
>
> The routing code uses the primary IP address of the outgoing
> interface, unless you explicitly configure the preferred
> source address (as in the example above).
>
> Regards
> /Christian
> [http://benve.info]
>
>
> _______________________________________________
> LARTC mailing list
> LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc