[Openswan Users] Openswan + IPTables SNAT both side traffic, is possible?
Claudio Prono
claudio.prono at atpss.net
Wed Mar 2 10:08:06 EST 2011
Hello all,
I use OpenSwan with a special IPTables SNAT rule because to the other
side they have the same subnet IP addresses. So i have inserted a rule
like this:
iptables -t nat -A POSTROUTING -s 10.10.0.4 -d 192.168.0.22 -j SNAT
--to-source 11.10.0.4
With this rule the client present itself as 11.10.0.4 and all works
without problems, when the client tryies to access the IP 192.168.0.22.
But it doesn't work if is the 192.168.0.22 trying to contact the
11.10.0.4. I have tried some different rules, to do a reverse nat for
the traffic from 192.168.0.2 to 11.10.0.4 natted to 10.10.0.4, but
without any success. Any hint about it?
If you need more configuration about OpenSwan, contact me.
Cordially,
Claudio Prono.
--
--------------------------------------------------------------------------------
Claudio Prono OPST
System Developer
Gsm: +39-349-54.33.258
@PSS Srl Tel: +39-011-32.72.100
Via San Bernardino, 17 Fax: +39-011-32.46.497
10141 Torino - ITALY http://atpss.net/disclaimer
--------------------------------------------------------------------------------
PGP Key - http://keys.atpss.net/c_prono.asc
More information about the Users
mailing list