Hello Claude, On Thu, 23.11.2006 at 02:48:45 -0800, Claude Brassel <[EMAIL PROTECTED]> wrote: > [IPsec-clients] > Phase= 2 > Configuration= SoftPK-quick-mode > #Local-ID= default-route > Local-ID= LAN54 > Remote-ID= dummy-remote > > [ufqdn/[EMAIL PROTECTED] > Address= 192.168.54.15 > Netmask= 255.255.255.0 > > [ufqdn/[EMAIL PROTECTED] > Address= 192.168.54.16 > Netmask= 255.255.255.0
> [default-route] > ID-type= IPV4_ADDR_SUBNET > Network= 0.0.0.0 > Netmask= 0.0.0.0 You don't seem to use the [default-route] anywhere. Intention, or accident? > [LAN54] > ID-Type= IPV4_ADDR_SUBNET > Network= 192.168.54.0 > Netmask= 255.255.255.0 You advertise a route to 192.168.54.0/24 to your clients. You also assign them IP addresses from the same range, as if your VPN gateway were a bridge, not a router. Best, --Toni++
