-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hello Aleksey
You need to define every net-to-net tunnel manually in ipsec.conf or
swanctl.conf.
The tunneled subnets for every spoke configuration on the hub would be
leftsubnet=allOtherSpokeNetworks
rightsubnet=SpokeNetwork
On the
Hi guys!
Is there a way to configure strongswan in a site-to-site hub-and-spoke
topology, so for me to have for example strongswan hub in central office
and having multiple spokes whose traffic between each other should be
routed through the central office? I haven't found a guide on the net,