[Openswan Users] multiple ipsec/l2tp client behind same nat device

Paul Wouters paul at xelerance.com
Mon Jun 16 15:41:04 EDT 2008


On Mon, 16 Jun 2008, Mikhail Yu. Kononets wrote:

> Paul Wouters wrote:
>> I believe NETKEY handles that scenario fine, but not the "two xp clients
>> on the same nat'ed ip behind different NAT routers".
>
> Interesting. Is there a working implementation for such a situation? I mean 
> two windows ipsec/l2tp clients behind different NAT boxes with same private 
> IPs with klips? If yes, could you please describe it in a couple of words and 
> point some docs where one could read about it?

openswan 2.6.x supports the userland bits of this. KLIPS code for 2.6.14
is not yet very stable, but it has the code merged in too. There are a
few tiny patches outside of klips into the kernel that are required, that
we plan to release ASAP.

Paul


More information about the Users mailing list