[Swan] libreswan inside local network with NAT (left) - MacOS roadwarrior (right)

Paul Wouters paul at nohats.ca
Mon Oct 31 00:42:47 EET 2022


Yes, use the IKEv2 road warrior setup examples and forward port 500,4500 UDP. 

Sent using a virtual keyboard on a phone

> On Oct 29, 2022, at 08:43, Rodrigo Gruppelli <grupis at gmail.com> wrote:
> 
> Greetings!
> 
> I would like to know if it’s possible to achieve this kind of setup:
> 
> On the left side, there is my local network (192.168.0.0/24)
> 
> - The libreswan server is inside this network (IP 192.168.0.120) 
> - The provider's router local IP is 192.168.0.1 and its external IP is valid but dynamic
> - I use No-IP.org for dynamic DNS bindings
> - I can tweak configuration inside provider’s router, to redirect external TCP/UDP ports to machines inside
> 
> On the right side, I’d like to be able to establish a tunnel with my local network, wherever I am in the world, using a macbook, acessing whatever machine inside my local network.
> 
> Is it possible to build a setup like this? What do I need to configure in ipsec.conf ? 
> 
> Cheers
> Rodrigo
> 
> _______________________________________________
> Swan mailing list
> Swan at lists.libreswan.org
> https://lists.libreswan.org/mailman/listinfo/swan


More information about the Swan mailing list