[Swan] Host-to-host tunnel and VTI

Paul Wouters paul at nohats.ca
Wed Mar 7 09:26:19 UTC 2018


On Mon, 5 Mar 2018, Tuomo Soini wrote:

>> I'm running Fedora 26 with libreswan 3.23 and trying to setup a
>> host-to-host tunnel using the VTI functionality.
>
>> Is this setup/configuration even possible? Maybe I'm missing some
>> fundamentals here :)
>
> Host-host is not possible with VTI.
>
>> I've successfully got VTI to work with a subnet-to-subnet
>> configuration (left/rightsubnet).
>
> Yes, that's what VTI is designed for.

Indeed. I'm hoping the new xfrmi interface type being considered won't
have this problem.

Paul


More information about the Swan mailing list