[strongSwan] Do clients see each other when connected by ip-pool?

Noel Kuntze noel.kuntze+strongswan-users-ml at thermi.consulting
Fri Sep 22 13:53:26 CEST 2017


Hi,

That depends on your firewall rules and the negotiated traffic selector.
You can either create drop policies for traffic from and to the pool's IPs or use iptables.
The latter is easier.

Kind regards

Noel

On 22.09.2017 13:47, Mike.Ettrich at bertelsmann.de wrote:
>
> Hi!
>
> We want to enable client-computers to connect with a restricted network by using vpn connections. As I understand  do this client become an ip-address attached that comes from the configured ip-pool.
>
>  
>
> Question: Do this client may ‘see’ each other?
>
>  
>
> If so, how could we prevent this visabillity?
>
>  
>
> Kind regards,
>
> Mike.
>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170922/9b095cfc/attachment.sig>


More information about the Users mailing list