[strongSwan] Multiple rightsubnet

Levente leventelist at gmail.com
Mon Jul 31 11:04:01 CEST 2017

Dear list,

I try to set up multiple subnet in rightsubnet. As per the
documentation, we use the notation like this:


in ipsec.conf.

What I see is that only the first subnet is created. The other end is
a Checkpoint firewall.

I also tried creating multiple independent tunnels, but then I get
invalid key exchange error. On the firewall, we see 'invalid key

If we create only one tunnel, it is working for any subnet.

I tried the whole setup with a pfsense firewall and there are no problems.

Anyone have same experience? ...or maybe some pointers?

Thank you,

More information about the Users mailing list