[strongSwan] Clients with identical networks?
andreas.steffen at strongswan.org
Mon Dec 3 20:19:31 CET 2012
have a look at the following example scenario
which applies source NAT to two identical subnets using XFRM marks.
On 03.12.2012 16:40, Jakob Curdes wrote:
> .. I have done quite a bit of research but I did not find a description
> for my layout; or at least I did not find one which I understand to
> describe my problem.
> I (will) have several roadwarriors with the same internal subnet; they
> will all have to connect to one central IPSec hub. I need connectivity
> in both directions, so a source NAT (done e.g. by updown script) does
> not really help here as far as I see. I know that e.g. with Cisco you
> can do a "two-way NAT" thing so that we can distinguish the subnets by
> moving them on the client side. What would a solution with IPSec tools
> look like?
> Jakob Curdes
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 4468 bytes
Desc: S/MIME Cryptographic Signature
More information about the Users