On Thursday 19 October 2006 12:31, Matt Price wrote: > On 10/19/06, Jacob S <[EMAIL PROTECTED]> wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > > Hash: SHA1 > > > > On Thu, 19 Oct 2006 11:03:20 -0400 > > > > "Matt Price" <[EMAIL PROTECTED]> wrote: > > > hi, > > > > > > i'm wondering whether it's possible to route only certain internet > > > traffic through a vpn, or to exclude certain ip addresses/ranges from > > > the vpn. > > > > > > my situation is as follows: I work mostly from home and rely on the > > > university's vpn to be able to access online journals. ths works > > > fine., but when I'm connected to the vpn I can't send mail from my > > > home email account (postfix doesn't work properly). I'm wondering > > > whether I could contact my smtp host from outside of the vpn somehow. > > > > > > has anyone tried this and/or any suggestions? > > > > This sounds like you don't have your routing setup properly. I use a > > vpn regularly for work and only traffic going to their range of ip > > addresses goes through the vpn. > > > > What does "route -n" show on your computer? And how do you connect to > > the internet? > > to answer both of your questions: > > The vpn server runs openvpn, which I also use on my computer as a > client. this vpn sends all internet traffic through itself; I imagine > but don't know for sure that this is done with the redirect-gateway > directive as described in the openvpn howto: > http://openvpn.net/howto.html#redirect > > when I'm connected, route -n shows: > > n$ route -n > Kernel IP routing table > Destination Gateway Genmask Flags Metric Ref Use > Iface 128.100.56.140 192.168.2.1 255.255.255.255 UGH 0 0 > 0 eth1 142.150.248.1 142.150.248.165 255.255.255.255 UGH 0 0 > 0 tun0 142.150.248.165 0.0.0.0 255.255.255.255 UH 0 0 > 0 tun0 192.168.70.0 0.0.0.0 255.255.255.0 U 0 0 > 0 vmnet1 192.168.2.0 0.0.0.0 255.255.255.0 U 0 0 > 0 eth1 172.16.137.0 0.0.0.0 255.255.255.0 U 0 0 > 0 vmnet8 0.0.0.0 142.150.248.165 0.0.0.0 UG 0 > 0 0 tun0 > > (vmware server is up, I guess that's what the vmnet1 is about) > > this is all uninterpretable to me so help welcome... > > thanks, > > matt >
With the vpnc client which is probably not what your are using, you can specify target networks in the config file located in /etc/vpnc/example.conf. Perhaps the openvpn client would have something similar where you can route only a certain range of traffic through that tunnel. John -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
