Hello Graham,
this is an easy one:
ipsec.conf of host A:
conn a-b
left=IP_A
right=IP_GW
rightsubnet=IP_B/32
ipsec.conf of gateway GW:
conn a-gw
left=IP_GW
leftsubnet=IP_B
right=IP_A
conn b-gw
left=IP_GW
leftsubnet=IP_A
right=IP_B
ipsec.conf of host B
conn b-a
left=IP_B
right=IP_GW
rightsubnet=IP_A/32
Kind regards
Andreas
On 04.03.2011 10:57, Graham Hudspith wrote:
> All,
>
> Warning - probable noob question coming up ...
>
> We've been using strongSwan quite happily for a couple of years now,
> with the IPsec clients connecting to a SeGW and talking to hosts on
> the secure side.
>
> Now, however, we have a requirement for one IPsec client to talk to
> another IPsec client down one tunnel and looped back at the SeGW
> through the other tunnel.
>
> I've had a look through all of the current strongSwan examples but
> could not spot one that would mimic this situation.
>
> Is it possible ?
>
> Regards,
>
> Graham.
======================================================================
Andreas Steffen [email protected]
strongSwan - the Linux VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
===========================================================[ITA-HSR]==
_______________________________________________
Users mailing list
[email protected]
https://lists.strongswan.org/mailman/listinfo/users
