[Swan] subnet syntax

Jérémie Vandeville j.vandeville at gmail.com
Mon Oct 27 22:35:19 EET 2014


Hi everyone, Strongswan allow a very simple and elegant syntax for
right/left subnet

conn test
        left=ipsec1.local
        leftid=@ipsec1
        right=ipsec2.local
        rightid=@ipsec2
        authby=secret
        keyexchange=ikev2
        type=tunnel
        auto=start
        leftsubnet=10.0.0.0/24[icmp],10.0.0.0/24[tcp/8000]
        rightsubnet=10.0.1.0/24[icmp],10.0.1.0/24[tcp/%any]

Is it possible to do the same configuration with libreswan ?

Thanks


More information about the Swan mailing list