[strongSwan] Double NAT Transport in 5.1 rc1/rd2 config question
Tobias Brunner
tobias at strongswan.org
Thu Jul 25 09:06:04 CEST 2013
Hi Dan,
> 2013-07-25T02:01:37-0400 01[CFG] looking for peer configs matching
> 10.170.95.110[54.241.192.159]...54.214.139.16[10.251.75.98]
You can't use the IP addresses as identities (left|rightid default to
left|right for PSK connections) because of the NAT. As each client will
use its private IP address as ID and your configs have right=<public IP>
the config lookup fails. Try setting the ID explicitly e.g. with
leftid=moon and rightid=sun on moon and likewise on sun.
Regards,
Tobias
More information about the Users
mailing list