On 26/01/2019 16:22, Paul Wouters wrote:
On Jan 26, 2019, at 03:54, Nick Howitt <[email protected]> wrote:
all the tunnels seem to have come up, so likely this is now related to
NAT or MASQUERADING rules. Or forwarding rules, or those nodes not
having a gateway pointing to the VPN server for those remote subnets.
left/rightsourceip?
No you cannot do that with subnetS=, only with singular subnet=
It would be nice if we could extend that functionality to cover all combinatory
cases with a multiple leftsourceip=1.2.3.4,5.6.7.8 but we don’t currently.
Ugh. That points to multiple conns then, doesn't it? I wouldn't have
thought the logic wouldn't be too difficult to implement (pick the
source IP from the subnet you are instantiating ...) but it is more time
and effort.
Paul
_______________________________________________
Swan mailing list
[email protected]
https://lists.libreswan.org/mailman/listinfo/swan
