[Openswan Users] vpn with nat

Paolo Ghidini paolo at ghido.com
Mon May 10 09:56:07 CEST 2004


Sorry, i attach my ipsec.conf, my two pubblic ip are natted to my loacl 
ip address by the firewall/openswan gateway

config setup
        # Debug-logging controls:  "none" for (almost) none, "all" for lots.
        klipsdebug=all
        plutodebug=dns
        nat_traversal=yes

conn tunnel
        leftid=@host.mydomain.it
        rightid=@host.mydomain.com
        presharedkey=mykey1
        nat_traversal=yes
        # Italy
        left=pubblicip1
        leftsubnet=191.168.1.0/24
        leftnexthop=%defaultroute
        # USA
        right=pubblicip2
        rightsubnet=192.168.2.0/24
        rightnexthop=%defaultroute
        keyingtries=0
        auto=start
        authby=presharedkey



More information about the Users mailing list