[strongSwan] IKEv2 VPN: Maintaining source IP of most traffic

Siddharth Mathur mat_sid at yahoo.com
Mon Jul 20 12:20:15 CEST 2015

A newbie question on routing.
I am prototyping a VPN configuration where smartphones send their traffic to a StrongSwan v5.1.2 VPN gateway. I wish to process the HTTP (non-secure traffic) through a user land HTTP proxy software. I do not intend to do anything with the HTTPS traffic. 
Is there a way to make the HTTPS traffic appear to come from the original client IP address, and not from my VPN gw/internet gateway's IP address? For HTTP traffic, I could conceivably use the X-Forwarded-For header which is widely adopted.
Any pointers appreciated. 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20150720/6ec385b0/attachment.html>

More information about the Users mailing list