Actually this is just for test purposes. You want to be able to do
this, otherwise to test a VPN router which can do 256 tunnels you would
need 256 client machines. The setup worked for my Field guy in Taiwan
follwoing my instructions. Niether tunnel dominates. If I set up all
the routes and run traffic through one tunnel, either one it works. If
I try to push traffic through both using the smartbits tester it
fails.
The next step will be to try with a PC and see if I can ping through
both simultaneously and then to file transfers using wget, but because
of the success with my instructions in Asia this just got dropped from
item 1 on my priority list to about number 23. I've got to reduce the
RAM footprint of our system for one customer, and also modify an
ethernet driver. Those are priority 1 and 2 right now.
Thanks for all the suggestions guys. When I get back and revisit this
I'll let you know what I find.
-Mike
On Thu, 2006-01-19 at 17:50 -0800, [EMAIL PROTECTED] wrote:
> Technically wouldnt this be split tunneling , or in a sense ? You
> usually only want one tunnel open from one host .. the security
> implications of not enforcing that can be devastating.. ( eg - VPN to
> the corp lan AND VPN to the Hacker lan simultaneously ) Might the client
> be doing what its supposed to ? does the first one up always dominate ?
>
> Mark
>
> Mike Cherba wrote:
>
> >The 2 routes to the same host make sense. I'm actually opening 2
> >tunnels to the same VPN box. Using destination based routing I wanted
> >to make the traffic flow down different tunnels. Anyway, our guy in
> >Taiwan managed to get it working following my instructions and is going
> >to send me his test report.
> > -Mike
> >
> >
> >
> >On Thu, 2006-01-19 at 15:51 -0800, Bob Miller wrote:
> >
> >
> >>Mike Cherba wrote:
> >>
> >>
> >>
> >>>10.0.0.100 * 255.255.255.255 UH 0 0 0
> >>>ppp0
> >>>10.0.0.100 * 255.255.255.255 UH 0 0 0
> >>>ppp1
> >>>
> >>>
> >>The oddest thing about your configuration is that you have two routes
> >>to the same host. How do you expect the kernel to decide which tunnel
> >>to use?
> >>
> >>In fact, why do you have either of those routes? Does it help
> >>if you remove them both?
> >>
> >>
> >>
>
> _______________________________________________
> EUGLUG mailing list
> [email protected]
> http://www.euglug.org/mailman/listinfo/euglug
Programmer - an organism that turns coffee into software. --- Unknown
_______________________________________________
EUGLUG mailing list
[email protected]
http://www.euglug.org/mailman/listinfo/euglug
