[Swan] Understanding left/rightsubnet for "VPN server for remote clients using IKEv2"

Tuomo Soini tis at foobar.fi
Mon Mar 28 12:34:34 EEST 2022

On Sun, 27 Mar 2022 14:37:26 +0200
Brady Johnson <bradyjoh at redhat.com> wrote:

> conn vpn_server_tunnel
>     left=
>     leftsubnet=

> conn vpn_client_tunnel
>     left=
>     leftsubnet=
>     right=
>     rightid=%fromcert
>     rightsubnet=

This is basically completely useless configuration and can't work
because all networks are same. Generate proper networking where routing
Remove leftsubnet and rightsubnet from your configuration and you will
at least get working tunnel between two hosts.

Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <https://foobar.fi/>

More information about the Swan mailing list