Tonnerre LOMBARD wrote: >> You must have the 10.1.1.1 as source ip. A normal ping on the gateway >> ueses the external ip as source! > > Yes, this one works so far. However, how would one configure this > statically? Is there any way other than route add -host 10.1.1.1 10.16.1.1 ?
I know no way of configure this as a default. And I dont think the route will do what you want. But most tools have a option to set the address to bind. (i.e. ssh -b <address>; ping -I <address>) Most applications like named, sendmail, apache have also a configuration option to select the bind address. Maybe another way is setting up a second tunnel to encrypt the traffic between the two outside interfaces of your gatways. Ralph
