From mboxrd@z Thu Jan  1 00:00:00 1970
From: Mohan Sundaram <mohan.tux@gmail.com>
Date: Wed, 31 Oct 2007 02:59:54 +0000
Subject: [Fwd: Re: [LARTC] custom route for forwarded traffic]
Message-Id: <4727ECDA.3090009@vsnl.com>
List-Id: <lartc.vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Aleksander Kamenik wrote:
> Hi,
> If I add a rule to the main routing table in the users network's 
> firewall for servers network's external IP to go through the VPN, I will 
> break the VPN connection (kind of like the chicken and egg problem).
> 
This true only for cases like L3 IPSec where traffic to be encrypted is
based on src/dst IP combo. If you had a VPN virtual interface, this
should not be a problem. You can choose to route traffic of your choice.
Good examples is OpenVPN and L2 IPSec.

Mohan

_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc