[strongSwan] Trying to work out why connection not being established from AWS

Whit Blauvelt whit at transpect.com
Fri Sep 22 20:31:50 CEST 2017

On Fri, Sep 22, 2017 at 11:08:02AM -0400, Eric Germann wrote:
> Not sure what your config is, but in our AWS deployments of Strongswan, we set
> left = the IP address of the instance within the VPC (the address assigned to
> the interface)
> leftid = the Elastic IP
> Make sure your Security Groups reflect UDP 500 and 4500 from the remote IP as
> it will try and use NAT-T (or should).
> Works like a champ.

Thanks Eric!

That left= and leftid= bit was what I needed. (Already had the Security
Group thing). Guess it doesn't figure itself out so automagically after all.


More information about the Users mailing list