[strongSwan] Example needed: both client and server networks are behind NAT
strongswan_user at mail.ru
strongswan_user at mail.ru
Mon Apr 9 18:11:18 CEST 2018
Hello all. Ok, another re-phrase, very quick question, hopefully for a quick answer. Please.
Is it possible to have net-2-net vpn, with both vpn gateways: (a) behind NAT, (b) having only 1 network interface? What example/test would be closest to this?
Thanks.
>Пятница, 30 марта 2018, 23:53 +03:00 от strongswan_user at mail.ru:
>
>In other words: how alice and bob from ikev2/double-nat-net should be further configured so that alice2, 10.1.0.11 could ping bob2, 10.2.0.11? Assuming, as in the test, that the tunnel goes from alice, 10.1.0.10 to bob, 10.2.0.10.
>
>Thank you.
>
>>Пятница, 30 марта 2018, 21:02 +03:00 от strongswan_user at mail.ru:
>>
>>Hello!
>>
>>Is there an example that I can study - when both client and server networks are behind NAT? ikev2, and PSK for simplicity.
>>
>>The ikev2/double-nat-net test seems to be closest, and it is supposed to show a *network* (bob, bob2,...) behind the server, but bob is the only one there (and alice doesn't even ping bob, she pings internal NAT interface). In my similar setup I can only have 1 client (alice) successfully pinging the server (bob). bob2 can't ping alice, and alice2 can't ping bob (so, peer-to-peer only).
>>
>>Thanks.
--
More information about the Users
mailing list