On 12/31/2020 2:52 AM, Manfred wrote:
Hi,
[...]
Do you mean the internal 192.168.1.1 address, so it's on the same
network as the Windows PC at 192.168.1.35? Eventually I'll need to do
this over the Internet, of course...
If 192.168.1.1 is the local IP address of the libreswan host[*], I'd say
yes, assuming it is behind the router's NAT. This is to tell libreswan
to identify itself as the "left" peer (because it will match that
address against the interface that is receiving the initiator's request
(from the win10 laptop)).
While you have both peers on the same network I think you may use the
same local address on the win10 laptop as well and see if it connects -
i.e. the connection configuration is OK and certs are OK too.
Correction: you may not (as Paul spotted). You have to bring the laptop
outside in the cold (virtually)
_______________________________________________
Swan mailing list
[email protected]
https://lists.libreswan.org/mailman/listinfo/swan
