I have a working IPsec connection to a client's server. Presently I can access their 192.168.100.0/24 subnet. How do I alter my /etc/ipsec.conf to access the new 192.168.101.0/24 subnet?
Here is the relevant snippet from my /etc/ipsec.conf:
Code:
#
# RCA Connection
#
conn rca-arm-rw
# Left security gateway, subnet behind it, next hop toward right.
left=ipsec.armsystems.ca
leftid=@armsystems.ca
leftsubnet=10.10.10.0/24
leftnexthop=206.17.197.217
leftsourceip=10.10.10.11
# RSA 2048 bits wall.armsystems.ca Wed Dec 15 16:22:42 2004
leftrsasigkey=0sAQN9l++On/V97Q0Awuw32Jx.......
# Right security gateway, subnet behind it, next hop toward left.
rightnexthop=%defaultroute
right=rca.arm-systems.ca
rightsubnet=192.168.100.0/24
rightid=@rca.arm-systems.ca
rightsourceip=192.168.100.2
# RSA 2192 bits rca.royalcity.ca Wed Oct 4 11:02:40 2006
rightrsasigkey=0sAQOTrVnSbxA7l0q...........
# To authorize this connection, but not actually start it, at startup,
# uncomment this.
auto=add
I would like to access both the 192.168.100.* subnet as well as the 192.168.101.* subnet with minimal alteration to ipsec.conf