ipsec single tunnel multiple lans



Reaction score: 3
Messages: 70

Hi all, currently I have a VPN using racoon ipsec between a juniper and a freebsd box

the vpn was created the 'common way' 2 Peer/public IP's and later joining the private lans from each side.

my working configuration looks like:

gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1280
        tunnel inet -->
        inet --> netmask 0xffffffff

and on ipsec.conf i have something like:

spdadd any -P out ipsec esp/tunnel/;
spdadd any -P in  ipsec esp/tunnel/;

But now i was requested to reconfigure the VPN or to reach another subnet using the same tunnel, the guys usint the juniper told me that they have configure they equipment to receive ping/trafic from ips to their subnets and

My question here is how to add another subnet to the already established tunnel ? if i configure the tunnel to use it can connect and i can ping but the i can not reach the, I can have only one not two lans at the same time.

Any idea on how to access to multiple lans having the same PEER IP/ same tunnel and same private IP ?

thanks in advance.