[Openswan Users] Terminating VPN on the NAT gateway

Binand Sethumadhavan binand at gmx.net
Wed Jun 12 10:20:46 UTC 2013

On 11 June 2013 17:58, Binand Sethumadhavan <binand at gmx.net> wrote:
> I can see in tcpdump that the source IP of packets from BB endpoint to
> AA endpoint is set to the WAN-side IP of BB. Why is this so?

This now works for me after I added this iptables rule:

iptables -t nat -I POSTROUTING -s a.b.c.d -d -j SNAT

No documentation says such a step is needed. Is there something I am
missing elsewhere in my config?


More information about the Users mailing list