[Swan] Host-To-Host VPN with multiply interfaces
Michael Furman
michael_furman at hotmail.com
Mon May 16 19:53:51 UTC 2016
I need to configure Host-To-Host VPN between 2 servers while on each server I have 2 interfaces. It means that I need to create 2 IPSec channels that connect the same servers. For example on the first (left) server I have the following:
eth2 inet
addr:85.85.85.66 Bcast:85.85.85.67 Mask:255.255.255.252
eth3 inet
addr:85.85.85.70 Bcast:85.85.85.71 Mask:255.255.255.252
And on the second (right) server I have the following:
eth2 inet
addr:85.85.85.68 Bcast:85.85.85.69 Mask:255.255.255.252
eth3 inet
addr:85.85.85.72 Bcast:85.85.85.73 Mask:255.255.255.252
I do not have problem with left and right IP configuration since each eth interface has its own IP. My question how to configure leftrsasigkey and rightrsasigkey. I see that I can generate newhostkey in different files: ipsec newhostkey --configdir /etc/ipsec.d --output /etc/ipsec.d/site1.secrets ipsec newhostkey --configdir /etc/ipsec.d --output /etc/ipsec.d/site2.secrets But how can I configure what file to take (site1.secrets or site2.secrets) in the following command? ipsec showhostkey --left Any help will be appreciated.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20160516/8c00a349/attachment-0001.html>
More information about the Swan
mailing list