[strongSwan] Multiple tunnels between same peer
Martin Willi
martin at strongswan.org
Wed May 4 10:27:17 CEST 2011
> When I try to ping one peer from the other, the packets go across
> without encryption. In other words, it does not go through either
> tunnel.
Does your ping use the correct addresses to match your tunnel
(192.168.10.0/24 === 172.16.10.0/24)?
> can I specify which tunnel should be used for what?
Why do you use two tunnels in the first place?
You can use Netfilter firewall marks to tag traffic using IPtables for a
specific tunnel. Have a look at the "mark" option in ipsec.conf.5.
Regards
Martin
More information about the Users
mailing list