[strongSwan] Specifying more than one private remote host

Vyronas Tsingaras vtsingaras at it.auth.gr
Tue Jul 29 21:27:14 CEST 2014 

Mark, 

conn ip1
     also=rw
     rightsubnet=172.3.0.39/32
     auto=start

conn ip2
     also=rw
     rightsubnet=172.3.0.40/32
     auto=start

conn rw
     left= *vpnhost*
     leftid= blah blah
     right=%any or whatever
     rightid= blah blah

Let me know if this helps you. 

Regards, 
Vyronas Tsingaras

On 29 July 2014 22:09:50 EEST, Mark Gordon <markgne at gmail.com> wrote:
>Vyronas,
>
>Thank you for the information. The information is helpful but
>unfortunately, the client set this up as IKEv1.  Any other thoughts?
>
>Regards,
>Mark G
>
>
>On Tue, Jul 29, 2014 at 3:05 PM, Vyronas Tsingaras
><vtsingaras at it.auth.gr>
>wrote:
>
>> Hi Mark,
>>
>> rightsubnet=subnetCIDR1, subnetCIDR2
>>
>> But only for IKEv2.
>>
>> Regards,
>> Vyronas Tsingaras
>>
>> On 29 July 2014 20:39:57 EEST, Mark Gordon <markgne at gmail.com> wrote:
>>
>>>  I am fairly new to strongswan and looking for assistance. I need to
>>> specify the priviate IP's of the remote hosts.  My understanding is
>>> normally this would be rightsubnet= .  The problem is the remote
>>> administrator gave me two hosts and not a subnet.  I could specify
>the
>>> subnet but it is sufficiently broad enough that the remote
>administrator
>>> doesn't want to do that.  Is there a way to identify two unique
>hosts and
>>> not have to specify the subnet?
>>>
>>> For example the two hosts could be;  172.3.0.39/32 and
>172.3.0.40/32.
>>>
>>> What options, if any, should I configure to allow both hosts to
>traverse
>>> the VPN?
>>>
>>> Thanks!
>>> Mark G.
>>> Network Engineer
>>>
>>> ------------------------------
>>>
>>> Users mailing list
>>> Users at lists.strongswan.org
>>> https://lists.strongswan.org/mailman/listinfo/users
>>>
>>>
>> --
>> Sent from my Android device with K-9 Mail. Please excuse my brevity.
>>

-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20140729/c78cf81d/attachment-0001.html>

More information about the Users mailing list