<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 12 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple">
<div class="WordSection1">
<p class="MsoNormal">Hi-<o:p></o:p></p>
<p class="MsoNormal">I’m new to the list and VPNs in general and have a few questions to make sure I’m understanding the documentation. I want to set up a single StrongSwan server to multiple (26) Cradlepoint broadband routers in a Site to Site configuration.
Is this possible? I am looking at the configuration samples, specifically the Site-to-Site example using PSK and IPv4. It appears the Cradlepoint only supports these two options. Can I adapt this configuration to work for my scenario by simply adding more
conn definitions for each Cradlepoint? If so, can I simplify things by defining my left side configuration settings in the conn %defaults section and then just the right side settings in the individual conn definitions for each unit? Is there a way to make
the right side settings generic enough to allow a single conn definition that would let all remote units connect? Maybe a wild card or a way to specify multiple IPs in the right= line?<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Also, has anyone out there used Cradlepoint routers with StrongSwan? Are there any tips or tricks that I should know about? I’m using the COR series routers, but it appears that all of their firmware is the same for most of their product
line, so experiences with different models should still help.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Also, I see that both the StrongSwan and Cradlepoint documentation state that the connections can be set to be “dormant” until there is actually data to be sent. This application is for an emergency notification system, so ideally the
VPN network would never be used, so it would be desirable for the connections to operate this way. How reliable is this? Would I set both sides to go dormant or only one side?<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Thanks, any help will be greatly appreciated,<o:p></o:p></p>
<p class="MsoNormal">Jason<o:p></o:p></p>
</div>
</body>
</html>