<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Saved from the Spam bucket. Please remember to subscribe to the mailing before posting to it.<div><br></div><div><br></div><div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(127, 127, 127, 1.0);"><b>From: </b></span><span style="font-family:'Helvetica'; font-size:medium;">Jason Jernigan <<a href="mailto:jason.jernigan@gmail.com">jason.jernigan@gmail.com</a>><br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(127, 127, 127, 1.0);"><b>Subject: </b></span><span style="font-family:'Helvetica'; font-size:medium;"><b>openswan and NAT</b><br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(127, 127, 127, 1.0);"><b>Date: </b></span><span style="font-family:'Helvetica'; font-size:medium;">2 August, 2013 1:30:09 PM EDT<br></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px;"><span style="font-family:'Helvetica'; font-size:medium; color:rgba(127, 127, 127, 1.0);"><b>To: </b></span><span style="font-family:'Helvetica'; font-size:medium;"><a href="mailto:users@lists.openswan.org">users@lists.openswan.org</a><br></span></div><br><br><div dir="ltr">Hi all,<div>I'm fairly new at using openswan. But have had good success with it on a few simple tunnels. However I now have a requirement for something more complex and I'm hoping someone can point me in the right direction. </div>
<div><br></div><div>I need to setup a tunnel where I have been given a certain source address that my clients must come from. So I need to some how NAT my clients source address before entering the tunnel. I'm using amazon linux 3.4.37 with openswan-2.6.37-2.15.</div>
<div><br></div><div>I have tried using iptables but to source nat I had to use the POSTROUTING chain which means the packets are already encrypted. I attempted to use the PREROUTING chain but discovered SNAT is not allowed on the PREROUTING chain. </div>
<div><br></div><div>I appreciate any help I can get.</div><div>Thanks,</div><div>Jason </div></div>
<br><br></div></body></html>