[strongSwan] Site to Site VPN configuration using multiple traffic selectors
Chris Buechler
cmb at pfsense.com
Sat Feb 20 03:17:41 CET 2016
On Fri, Feb 19, 2016 at 6:17 AM, Erne, Heiner <Heiner.Erne at belden.com> wrote:
> Hello,
>
> I would like to ask how to configure with strongSwan a site to site
> configuration with multiple traffic selectors in one IKE setup, e.g.
>
> Site1 ß--------------------------------------------------------à Site 2
>
> Traffic selector 1 (shall have one ESP tunnel with this traffic selector)
>
> 192.168.1.0/24 <->
> 172.16.1.0/24
>
> Traffic selector 2 (shall have another ESP tunnel with this traffic
> selector)
>
> 192.168.3.0/24 <->
> 172.16.3.0/24
>
They're specified as comma-separated values (for IKEv2) in leftsubnet
and rightsubnet. So for that example, something like:
leftsubnet=192.168.1.0/24,192.168.3.0/24
rightsubnet=172.16.1.0/24,172.16.3.0/24
More information about the Users
mailing list