search for: remotelan

...ice using a src address of the local interface. This is to force locally generated traffic (ie, traffic generated on the server) to go through the VPN, rather than out with a source IP of the external interface. So I''ve done: ip rule add table 1 prio 100 ip route add table 1 <remoteLAN>/CIDR dev ipsec0 src <internalIP> ip route flush cache Now, my confusion is with regards to the src <internalIP> bit. I''ve been assuming that the ''src ...'' syntax actually changes the source IP in the packets matching the route to the IP specified, mu...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I have a situation where some Poptop/PPTP sessions (only with FC5/Shorewall to FC5/Shorewall firewall in between) cause the following to appear in the state table (shorewall show connections). unknown 47 420 src=XX.234.79.183 dst=XX.234.137.226 packets=2 bytes=130 [UNREPLIED] src=XX.234.137.226 dst=XX.234.79.183 packets=0 bytes=0 mark=0 use=1