You have to fake out the routing. For the hub site you need to shorten the subnet mask. For example. If using a /16 subnet mask for all sites, then in the ipsec.conf file on all connections, specify that your internal site is a /8.
Check out this site for details: http://jixen.tripod.com/ and look at this section: Using a central Ipsec gateway as a "tunnel hub" -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Jason C. Leach Sent: Thursday, February 07, 2002 6:41 PM To: [EMAIL PROTECTED] Subject: Re: [Leaf-user] LEAF routing private IP space w/ IPSEC hi, I have a question on this with a twist. If I have several nodes connected to a sentral HUB via IPSec, how can I route from node A to node B? Right now, the HUB can ping every node, but nodes can only pin the HUB. Thanks, j. -- ...................... ..... Jason C. Leach .. PGP/GPG Public key at http://www.keyserver.net/ Key ID: 1CF6DA85 _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
