[strongSwan] Strongswan behind NAT

John Mara jaymara22 at hotmail.com
Mon Jul 30 18:20:26 CEST 2012


Hi guys,

My setup is as below


(Public Internet) Roadwarrior -------> DSL Router (Portforwarded)-----> Strongswan server 

I want to know whether I have configured strongswan correctly as indicated in the configuration given below. I have used the private IP of the strongswan server for left. All ports relating to Strongswan and Xl2tpd are forwarded at the DSL router to the strongswan server. Im using strongswan 4.5.2 on ubuntu 12.04

ipsec.conf

config setup
	nat_traversal=yes
	plutostart=yes
	charonstart=yes

conn L2TP-VPN
	authby=psk
	compress=no
	keyexchange=ikev1
	pfs=no
	rekey=no
	type=transport
	left=192.168.112.103
	leftnexthop=192.168.112.103
	leftprotoport=17/1701
	right=%any
	rightprotoport=17/%any
	rightsubnetwithin=0.0.0.0/0
	auto=start


ipsec.secret

192.168.112.103 %any : PSK "password"


 Thanks! 		 	   		  



More information about the Users mailing list