[Swan] Does libreswan v3.20 support multiple clients behind NAT to communicate with public server simultaneously?

[Paul Wouters]

On Tue, 31 Oct 2017, Hao Chen wrote:

> in 1st round, only put "mark=-1" in IPsec.conf on server side. 
> 
> After "service ipsec restart", none of 2 private clients can reach public server. 

What did ip xfrm state and ip xfrm policy show ? Did the SA get
installed with unique marks for both clients?

Paul