[Openswan Users] NAT on ipsec tunnel is possible?

Paul Wouters paul at xelerance.com
Thu Apr 20 23:33:03 CEST 2006


On Thu, 20 Apr 2006, Domingo Antonio wrote:

> 	I stablished a connection between my openswan and a cisco 3000s.
>
> 	On my side i have a 172.16.0.0/24 subnet and it needs to be natted
> to access resources that is behind cisco.
>
> 	In my server i can acess all network behind cisco, but from my
> network no...
> 	Default gateway from my network is my openswan box..
>
> 	172.16.0.0/24 -------------- [ openswan ] -------------- [ cisco ]
> -------------- 1.1.1.1.0/24

Either NAT before sneding into the tunnel, and have the tunnel be setup
for the NAT'ed IP range, or keep the tunnel as is, but NAT on the other
end when the packets come out of the tunnel.

Paul


More information about the Users mailing list