[Openswan Users] Problem with multiple connection in l2tp/ipsec
Jacco de Leeuw
jacco2 at dds.nl
Tue Sep 25 08:59:19 EDT 2007
Dhaval wrote:
> I want to make multiple connection.
What do you mean? You want to support multiple L2TP/IPsec clients
connecting at the same time? From different IP addresses or from
behind the same NAT device?
> But when I add leftid and rightid in connection to ipsec.conf
Why? Leftid/rightid already default to left/right.
> leftid=@10.10.136.94
> rightid=@10.10.136.45
Remove these.
> auto=start
Use auto=add if the client is a road warrior.
> Without leftid and rightid can I make multiple connection?
If clients are connecting from multiple fixed IP addresses
then create multiple connection sections in ipsec.conf.
If clients have dynamic IP addresses, use right=%any instead.
But then every client will have to use the same PSK. You may
want to switch to certificates instead.
Jacco
--
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
More information about the Users
mailing list