> > I would appreciate any advice to solve the following situation: > > > > I have an IP phone that needs to be on a VPN network; it also needs > > to get its IP address through the VPN. To connect to the VPN, the > > only solution I have is Cisco AnyConnect. When the AnyConnect client > > connects, it creates a tun interface that gets a dynamic IP address. > > Is there any way to turn the AnyConnect machine into a site-to-site > > VPN gateway? I went through the OpenVPN-related documentation () but > > I am not clear. > > What do you want the AnyConnect machine to do that it is not already > doing? From your description, it is unclear to me how this whole thing > is supposed to work.
I would like the AnyConnect machine to behave like a gateway for the IP phones - basically all the traffic from eth1 to go through cscotun0. In other words, to behave like a Cisco ASA device (which is a site to site VPN). My first thought was that a bridge between cscotun0 and eth1 would suffice but this fails short - I think because the VPN interface is tun. I know I am expressing poorly what I am looking for, please bear with me. Regards, a. -- Neu: GMX FreeDSL Komplettanschluss mit DSL 6.000 Flatrate + Telefonanschluss für nur 17,95 Euro/mtl.!* http://dsl.gmx.de/?ac=OM.AD.PD003K11308T4569a ------------------------------------------------------------------------------ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
