[Swan] Understanding left/rightsubnet for "VPN server for remote clients using IKEv2"
Brady Johnson
bradyjoh at redhat.com
Mon Mar 28 12:47:07 EEST 2022
Tuomi,
Thank you for your reply.
I will put the client on a different subnet, but as it is now it is
creating a working tunnel between the 2 hosts.
Do you have any insights to the questions I asked in the original email?
Regards,
*Brady Johnson*
brady.johnson at redhat.com
On Mon, Mar 28, 2022 at 11:34 AM Tuomo Soini <tis at foobar.fi> wrote:
> On Sun, 27 Mar 2022 14:37:26 +0200
> Brady Johnson <bradyjoh at redhat.com> wrote:
>
> > conn vpn_server_tunnel
> > left=10.10.3.8
> > leftsubnet=10.10.3.0/24
>
> > conn vpn_client_tunnel
> > left=10.10.3.8
> > leftsubnet=10.10.3.0/24
> > right=10.10.3.5
> > rightid=%fromcert
> > rightsubnet=10.10.3.0/24
>
> This is basically completely useless configuration and can't work
> because all networks are same. Generate proper networking where routing
> Remove leftsubnet and rightsubnet from your configuration and you will
> at least get working tunnel between two hosts.
>
>
> --
> Tuomo Soini <tis at foobar.fi>
> Foobar Linux services
> +358 40 5240030
> Foobar Oy <https://foobar.fi/>
> _______________________________________________
> Swan mailing list
> Swan at lists.libreswan.org
> https://lists.libreswan.org/mailman/listinfo/swan
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20220328/ec4be241/attachment.htm>
More information about the Swan
mailing list