Re: routing only certain traffic through vpn?

Thu, 19 Oct 2006 11:33:09 -0700 

On 10/19/06, Jacob S <[EMAIL PROTECTED]> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, 19 Oct 2006 11:03:20 -0400
"Matt Price" <[EMAIL PROTECTED]> wrote:

> hi,
>
> i'm wondering whether it's possible to route only certain internet
> traffic through a vpn, or to exclude certain ip addresses/ranges from
> the vpn.
>
> my situation is as follows:  I work mostly from home and rely on the
> university's vpn to be able to access online journals.  ths works
> fine., but when I'm connected to the vpn I can't send mail from my
> home email account (postfix doesn't work properly).  I'm wondering
> whether I could contact my smtp host from outside of the vpn somehow.
>
> has anyone tried this and/or any suggestions?

This sounds like you don't have your routing setup properly. I use a
vpn regularly for work and only traffic going to their range of ip
addresses goes through the vpn.

What does "route -n" show on your computer? And how do you connect to
the internet?



to answer both of your questions:

The vpn server runs openvpn, which I also use on my computer as a
client.  this vpn sends all internet traffic through itself; I imagine
but don't know for sure that this is done with the redirect-gateway
directive as described in the openvpn howto:
http://openvpn.net/howto.html#redirect

when I'm connected, route -n shows:

n$ route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
128.100.56.140  192.168.2.1     255.255.255.255 UGH   0      0        0 eth1
142.150.248.1   142.150.248.165 255.255.255.255 UGH   0      0        0 tun0
142.150.248.165 0.0.0.0         255.255.255.255 UH    0      0        0 tun0
192.168.70.0    0.0.0.0         255.255.255.0   U     0      0        0 vmnet1
192.168.2.0     0.0.0.0         255.255.255.0   U     0      0        0 eth1
172.16.137.0    0.0.0.0         255.255.255.0   U     0      0        0 vmnet8
0.0.0.0         142.150.248.165 0.0.0.0         UG    0      0        0 tun0

(vmware server is up, I guess that's what the vmnet1 is about)

this is all uninterpretable to me so help welcome...

thanks,

matt







Jacob
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFFN6CnkpJ43hY3cTURAnmNAJ9/Iy6Zr2oQOCTT6PtfkGyNxnHfTwCbB14q
e1xwmze9caT/BxRlDkm9+gU=
=YTXP
-----END PGP SIGNATURE-----




--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to