Office gateway:
# cat /etc/ipsec.conf
ike passive esp from 192.168.0.0/24 to any local egress dstid
[EMAIL PROTECTED] psk xxx
Home gateway:
# cat /etc/ipsec.conf
ike dynamic esp from egress to 192.168.0.0/24 peer OFFICE_GATEWAY srcid
[EMAIL PROTECTED] psk xxx
So, if on home gateway i specify "from any to 192.168.0.0/24", office
gateway creates flow:
flow esp in from 0.0.0.0/0 to 192.168.0.0/24 ...
But if i use "from egress to 192.168.0.0/24" then all works as expected:
flow esp in from HOME_GATEWAY to 192.168.0.0/24 ...
So, making changes in home gateway configuration i can influence on how
traffic goes in office network! I think it's not desired behavior.
Anyway, thanks to all for the help!
--
Alexey Vatchenko
http://www.bsdua.org
