[prev in list] [next in list] [prev in thread] [next in thread]
List: strongswan-users
Subject: Re: [strongSwan] PAT
From: Noel Kuntze <noel () familie-kuntze ! de>
Date: 2016-02-26 21:58:13
Message-ID: 56D0CA75.10206 () familie-kuntze ! de
[Download RAW message or body]
[Attachment #2 (multipart/signed)]
[Attachment #4 (multipart/mixed)]
On 26.02.2016 22:30, Sean Courtney wrote:
> I have network A 192.168.1.0/24 behind a strongswan gateway with a
> public ip of 100.0.0.1. I have a network B 10.0.0.0/16 behind a
> strongswan gateway with a public ip of 200.0.0.1. I want to create a
> net2net IPSEC tunnel between network A and network B. I want to setup
> the tunnel so that Network B only sees a single IP that does PAT for
> network A.
You negotiate policies between A and B that secure the traffic between A and the network of B.
Then you do SNAT on A for traffic from the network of A to the network of B.
--
Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze
GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
["signature.asc" (application/pgp-signature)]
_______________________________________________
Users mailing list
Users@lists.strongswan.org
https://lists.strongswan.org/mailman/listinfo/users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic