[strongSwan] How to do NAT before ESP? having trouble
Mark M
mark076h at yahoo.com
Sun Jul 22 08:53:56 CEST 2012
Hi,
I am running a mobile road warrior client with strongSwan connecting to a strongSwan gateway. The mobile client has two interfaces, one for an inside subnet and one for the WAN connection. Behind my mobile client on the LAN side, I have another host that I would like to connect through the mobile client using NAT. Kinda like if i used my laptop as a mobile hotspot for other clients to connect to and all their connections are sent to my strongSwan gateway. I tried to setup NAT using iptables with the inside interface and the outside interface and it does not work. I looked around on old emails and i think what i am looking to do is it NAT before ESP. I need to NAT my LAN client to the virtual IP address or the outside WAN interface before it gets sent down the tunnel to my strongSwan gateway. I was looking at the older emails about the updown scripts but I can't find one for IKEv2 and charon. I also read that there was work being done on a leftnat
parameter but work on it was halted.
Is there any way I can do this?
Thanks
Mark-
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20120721/d9407309/attachment.html>
More information about the Users
mailing list