[Openswan Users] Tunnel Nated traffic HELP!
teddy B
boustany_t at hotmail.com
Sun Dec 25 09:11:44 CET 2005
is it supported on any other ipsec iplementation?
>From: Paul Wouters <paul at xelerance.com>
>To: teddy B <boustany_t at hotmail.com>
>CC: users at openswan.org
>Subject: Re: [Openswan Users] Tunnel Nated traffic HELP!
>Date: Fri, 23 Dec 2005 16:50:44 +0100 (CET)
>
>On Fri, 23 Dec 2005, teddy B wrote:
>
> > I would like to know if theirs a special configuration to allow Nated
>Traffic
> > to be tunneled?
> > the is that i wana setup an ipsec tunnel between 2 networks having
>overlapping
> > subnets.
> >
> > i have the following setup
> > net1
> > 172.16.0.0/24 (FTP server published)
> > |
> > Fake net1 (nat rule)
> > 172.16.100.0/24
> > |
> > Ipsec tunnel
> > 11.11.11.1/24
> > |
> > 11.11.11.2/24
> > Ipsec Tunnel
> > |
> > Fake net2( nat rule)
> > 172.16.101.0/24
> > |
> > net2
> > 172.16.0.0/24 (WWW server published)
>
>That is currently not (yet) supported.
>A workaround is to assign another network range on one end and
>use that, perhaps with a portforward to make it fully transparent.
>
>Paul
More information about the Users
mailing list