[strongSwan] strongswan 4.5.2 multiple right subnets
Andreas Steffen
andreas.steffen at strongswan.org
Thu Jun 16 09:50:34 CEST 2016
Hi Jayapal,
The IKEv1 protocol does not support comma-separated subnets, so your
problem is independent of the strongSwan version. You must set up a
separate connection definition for each subnet.
Regards
Andreas
On 06/16/2016 06:27 AM, Jayapal Reddy wrote:
> Hi,
>
> I am using strongswan ipsec 4.5.2. In this version multiple right
> subnets with comma (,) separated is working only for the first subnet.
> We have setup where up upgraded from openswan to strongswan. In this
> setup only first right subnet is working.
> We are using left right debain virtual router and right side Juniper SRX
> and we are using ikev1. We can't split that into multiple connections
> because right side Juniper srx config can't be changed because it is in
> customer location.
>
> Can some one suggest us how to resolve this. Is there patch available
> for this ?
> I have tried strongswan 5.2 from backports. in this setup my tunnel is
> not coming up.
>
> It is bit urgent, your inputs are highly appreciated.
>
> Thanks,
> Jayapal
>
======================================================================
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Open Source VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
===========================================================[ITA-HSR]==
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4275 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20160616/dd7e9725/attachment.bin>
More information about the Users
mailing list