[Swan] net-to-net for road warriors
Nick Howitt
nick at howitts.co.uk
Sat Jan 26 16:38:39 UTC 2019
On 26/01/2019 16:22, Paul Wouters wrote:
> On Jan 26, 2019, at 03:54, Nick Howitt <nick at howitts.co.uk> wrote:
>>
>>
>>> all the tunnels seem to have come up, so likely this is now related to
>>> NAT or MASQUERADING rules. Or forwarding rules, or those nodes not
>>> having a gateway pointing to the VPN server for those remote subnets.
>> left/rightsourceip?
> No you cannot do that with subnetS=, only with singular subnet=
>
> It would be nice if we could extend that functionality to cover all combinatory cases with a multiple leftsourceip=1.2.3.4,5.6.7.8 but we don’t currently.
Ugh. That points to multiple conns then, doesn't it? I wouldn't have
thought the logic wouldn't be too difficult to implement (pick the
source IP from the subnet you are instantiating ...) but it is more time
and effort.
>
> Paul
>
More information about the Swan
mailing list