Hello,
I looked to strongSwan connection parameters
(http://wiki.strongswan.org/wiki/1/ConnSection) and I am not sure how to define
several tunnels between the same endpoints, each tunnel with several traffic
selectors.
In my understanding an independent tunnel is defined by a "conn <name>"
directive with the condition that its body does not contain an "also = <section
name>" directive.
Now, I want, for each tunnel to include several traffic selectors; i.e. several
"left|rightprotoport = <protocol>/<port>" and several "left|rightsubnet = <ip
subnet>".
Moreover I want to combine traffic selectors in a specific way for a same
connection. For example to specify somehow
leftprotoport=icmp ONLY for leftsubnet= 192.168.10.0/24
and
leftprotoport=UDP ONLY for leftsubnet= 172.16.10.0/24
Can you please specify which are all possibilities of using the IKEv2 extended
traffic selector concept with strongSwan.
Thank you
Mugur
_______________________________________________
Users mailing list
[email protected]
https://lists.strongswan.org/mailman/listinfo/users
