[strongSwan] leftsubnet not local ?

Tue Nov 15 14:54:42 CET 2016

Hi,

I´m using a strongswan-5.4.0-2.el7.x86_64 on a CentOS7. My strongswan has a offical IP like 213.xxx.xxx.xxx and a privat IP like 192.168.44.4 /24.
My question:
Is it possible to define a VPN-Gateway like this:

conn test
                left=213.xxx.xxx.xxx
                leftsubnet=192.168.56.3/32
                leftnexthop=213.xxx.xxx.xxx
                leftid=213.xxx.xxx.xxx
                leftauth=psk
                right=xxx.xxx.xxx.196
                rightsubnet=xxx.xxx.20.75/32
                rightnexthop=xxx.xxx.xxx.xxx
                rightid=xxx.xxx.xxx.196

Is it possible to configure a left subnet that is not a local subnet for the strongswan ? It seems to me that this is not working. Any suggestions are welcome.

Best Regards

fatcharly