[strongSwan] Multiple protected networks
andreas.steffen at strongswan.org
Tue Aug 10 04:09:31 CEST 2010
this is no problem for strongSwan. With IKEv2 you just enumerate
the networks in the remote traffic selector:
so that only a single CHILD_SA must be established. With the old
IKEv1 protocol, 11 connection definitions are needed which result
in one ISAKMP_SA and 11 IPsec_SAs to be negotiated.
On 08/09/2010 10:36 PM, Stuart Beckett wrote:
> Can strongSwan support a connection where the remote (righthand) side
> has multiple networks?
> For instance we have an application where we will need to access eleven
> unique subnets on the remote side.
> Stuart Beckett
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
More information about the Users