[strongSwan] How to setup only one VPN connection for a single road warrior with dual IP addresses (v4 and v6) using IKEv2 in strongswan-5.0.0?
Mao, Zhiheng
zmao at qualcomm.com
Mon Aug 27 08:40:36 CEST 2012
Thanks Martin!
Just wondering if 5.0.1 is in the pipe to be released soon? Thanks!
Zhiheng
-----Original Message-----
From: Martin Willi [mailto:martin at strongswan.org]
Sent: Thursday, August 23, 2012 11:37 PM
To: Mao, Zhiheng
Cc: users at lists.strongswan.org
Subject: Re: [strongSwan] How to setup only one VPN connection for a single road warrior with dual IP addresses (v4 and v6) using IKEv2 in strongswan-5.0.0?
> I am wondering if it is possible to setup only one connection for
> Carol, but be able to route both IPv4 and IPv6 traffic through this
> single tunnel?
Yes, with IKEv2 you can negotiate traffic selectors for both IPv4 and
IPv6 in a single CHILD_SA. To do so, for example set
leftsubnet=10.0.0.1/32,fec1::/64
rightsubnet=10.2.0.0/16,fec2::/64
Not supported is the assignment of multiple virtual IPs using left/rightsourceip. However, I'm currently working on it and I hope to get it done for 5.0.1.
Regards
Martin
More information about the Users
mailing list