On Sat, Nov 11, 2006 at 11:58:14AM +0100, Joachim Schipper wrote: > On Fri, Nov 10, 2006 at 02:06:42PM -0600, Albert Chin wrote: > > Then, from the VPN CLIENT, how would an ssh connection to 192.168.1.1, > > server A on the internal network behind FW2, work? IPsec would encrypt > > the packet between 1.2.3.4 and 1.2.3.5, where it would be unencrypted, > > but on the external, fxp1 interface. How do I get 192.168.0.0/24 > > traffic to the fxp0 interface, from fxp1, when fxp1 is on a private > > network between FW1 and FW2? > > On a similar setup, /etc/hostname.$ext_if reads: > inet 192.168.X.Y 255.255.255.0 192.168.X.255 > !route add 192.168.Z.0/24 192.168.X.1 > > If I understand the question correctly, this should solve your problem.
Yes, it does. Thanks. I had -interface which was causing the problem. -- albert chin ([EMAIL PROTECTED])
