[strongSwan] PAT
Noel Kuntze
noel at familie-kuntze.de
Fri Feb 26 22:58:13 CET 2016
On 26.02.2016 22:30, Sean Courtney wrote:
> I have network A 192.168.1.0/24 behind a strongswan gateway with a
> public ip of 100.0.0.1. I have a network B 10.0.0.0/16 behind a
> strongswan gateway with a public ip of 200.0.0.1. I want to create a
> net2net IPSEC tunnel between network A and network B. I want to setup
> the tunnel so that Network B only sees a single IP that does PAT for
> network A.
You negotiate policies between A and B that secure the traffic between A and the network of B.
Then you do SNAT on A for traffic from the network of A to the network of B.
--
Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze
GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20160226/79731fa0/attachment-0001.pgp>
More information about the Users
mailing list