<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<meta name="Generator" content="Microsoft Word 14 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";
mso-fareast-language:EN-US;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.E-MailFormatvorlage17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri","sans-serif";
mso-fareast-language:EN-US;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:70.85pt 70.85pt 2.0cm 70.85pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="DE" link="blue" vlink="purple">
<div class="WordSection1">
<p class="MsoNormal">Hello,<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><span lang="EN-US">I would like to ask how to configure with strongSwan a
<b>site to site configuration</b> with <b>multiple traffic selectors</b> in one IKE setup, e.g.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Site1 </span><span lang="EN-US" style="font-family:Wingdings">ß</span><span lang="EN-US">--------------------------------------------------------</span><span lang="EN-US" style="font-family:Wingdings">à</span><span lang="EN-US">
Site 2<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Traffic selector 1 (shall have one ESP tunnel with this traffic selector)<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">192.168.1.0/24 <-> 172.16.1.0/24<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Traffic selector 2 (shall have another ESP tunnel with this traffic selector)<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">192.168.3.0/24 <-> 172.16.3.0/24<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Traffic selector 3…<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">And only this traffic shall go into the tunnels and the traffic selectors shall be exchanged at IKE(v1 or v2) setup.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Thanks for any help.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE">Best regards,<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE">Heiner.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE">--<br>
<br>
Heiner Erne | Development Industrial Ethernet | Hirschmann Automation and Control GmbH<br>
Stuttgarter Straße 45-51 |72654 Neckartenzlingen | Germany<br>
Phone +49 7127 14 - 1727 | Fax +49 7127 14 - 1600<br>
<a href="mailto:Heiner.Erne@belden.com"><span style="color:blue">mailto://Heiner.Erne@belden.com</span></a> |
<a href="http://www.beldensolutions.com/"><span style="color:blue">www.beldensolutions.com</span></a> |
<a href="http://www.blog.beldensolutions.com/"><span style="color:blue">www.blog.beldensolutions.com</span></a><br>
<br>
Hirschmann Automation and Control GmbH, Neckartenzlingen<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE">Register Court: Stuttgart, Trade Register No.: HRB 225927<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE">VAT No.: DE 814 212 604<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE">Managing Director: Christoph Gusenleitner, Henk Derksen, Wolfgang Schenk, Johannes Pfeffer, Oliver Steiner<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE"><br>
</span><span lang="EN-US" style="font-size:10.0pt;font-family:"Arial","sans-serif";mso-fareast-language:DE">Privileged/Confidential Information of Belden may be contained in this message.<br>
If you are not the addressee of this message, you may not read, copy or use this message, or deliver this message to anyone.<br>
In such event, you should destroy the message and kindly notify the sender by reply e-mail.<br>
<br>
It is understood that opinions or conclusions that do not relate to official business of Belden are neither given nor endorsed by Belden.
<br>
<br>
</span><span lang="EN-US" style="mso-fareast-language:DE"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
</div>
<p>DISCLAIMER:
Privileged and/or Confidential information may be contained in this
message. If you are not the addressee of this message, you may not
copy, use or deliver this message to anyone. In such event, you
should destroy the message and kindly notify the sender by reply
e-mail. It is understood that opinions or conclusions that do not
relate to the official business of the company are neither given
nor endorsed by the company.
Thank You.</p>
</body>
</html>