[strongSwan] One IPsec client talk to another through the SeGW ?
Andreas Steffen
andreas.steffen at strongswan.org
Fri Mar 4 11:58:58 CET 2011
Hello Graham,
this is an easy one:
ipsec.conf of host A:
conn a-b
left=IP_A
right=IP_GW
rightsubnet=IP_B/32
ipsec.conf of gateway GW:
conn a-gw
left=IP_GW
leftsubnet=IP_B
right=IP_A
conn b-gw
left=IP_GW
leftsubnet=IP_A
right=IP_B
ipsec.conf of host B
conn b-a
left=IP_B
right=IP_GW
rightsubnet=IP_A/32
Kind regards
Andreas
On 04.03.2011 10:57, Graham Hudspith wrote:
> All,
>
> Warning - probable noob question coming up ...
>
> We've been using strongSwan quite happily for a couple of years now,
> with the IPsec clients connecting to a SeGW and talking to hosts on
> the secure side.
>
> Now, however, we have a requirement for one IPsec client to talk to
> another IPsec client down one tunnel and looped back at the SeGW
> through the other tunnel.
>
> I've had a look through all of the current strongSwan examples but
> could not spot one that would mimic this situation.
>
> Is it possible ?
>
> Regards,
>
> Graham.
======================================================================
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
===========================================================[ITA-HSR]==
More information about the Users
mailing list