[Openswan Users] Terminating VPN on the NAT gateway

[Binand Sethumadhavan]

On 11 June 2013 17:58, Binand Sethumadhavan <binand at gmx.net> wrote:
> I can see in tcpdump that the source IP of packets from BB endpoint to
> AA endpoint is set to the WAN-side IP of BB. Why is this so?

This now works for me after I added this iptables rule:

iptables -t nat -I POSTROUTING -s a.b.c.d -d 10.13.16.0/23 -j SNAT
--to-source 192.168.100.1

No documentation says such a step is needed. Is there something I am
missing elsewhere in my config?

Binand