[strongSwan] Trying to work out why connection not being established from AWS
Whit Blauvelt
whit at transpect.com
Fri Sep 22 20:31:50 CEST 2017
On Fri, Sep 22, 2017 at 11:08:02AM -0400, Eric Germann wrote:
> Not sure what your config is, but in our AWS deployments of Strongswan, we set
>
> left = the IP address of the instance within the VPC (the address assigned to
> the interface)
> leftid = the Elastic IP
>
> Make sure your Security Groups reflect UDP 500 and 4500 from the remote IP as
> it will try and use NAT-T (or should).
>
> Works like a champ.
Thanks Eric!
That left= and leftid= bit was what I needed. (Already had the Security
Group thing). Guess it doesn't figure itself out so automagically after all.
Whit
More information about the Users
mailing list