[Openswan Users] NAT'd traffic down Openswan IPSec tunnel

Bryan Duff bduff at ecessa.com
Fri Nov 15 17:00:54 UTC 2013 

Hmmm.... one way to do it is to change your subnetting so that initially 
the traffic isn't captured by netkey until the traffic has been SNAT'd 
to something that matches the SPD.

So the leftsubnet is what you want to SNAT to.

If that makes sense.

-Bryan

On 11/15/2013 10:54 AM, George Wanley wrote:
>
> Hello,
>
> We have a requirement to NAT all traffic down an IPSec site to site 
> VPN tunnel to a Cisco firewall.....does Openswan provide this function?
>
> Thanks
>
> Indigo Logo
>
> 	
>
> George Wanley | Technical Manager | Indigo Software Ltd 
> <http://www.indigo.co.uk/>
>
> *DDI*
>
> *M*
>
> *T*
>
> *E*
>
> 	
>
> +44 191 375 6715
>
> +44 7771 961 334
>
> +44 191 375 6700
>
> george.wanley at indigo.co.uk <mailto:george.wanley at indigo.co.uk>
>
> This E-mail message, including any attachments, is intended only for 
> the person or entity to which it is addressed, and may contain 
> confidential information. If you are not the intended recipient, any 
> review, retransmission, disclosure, copying, modification or other use 
> of this E-mail message or attachments is strictly forbidden. If you 
> have received this E-mail message in error, please contact the author 
> and delete the message and any attachments from your computer. You are 
> also advised that the views and opinions expressed in this E-mail 
> message and any attachments are the author's own, and may not reflect 
> the views and opinions of Indigo Software Ltd. Internet communications 
> are not guaranteed to be secure or virus-free. Indigo Software Ltd 
> does not accept responsibility for any loss arising from unauthorised 
> access to, or interference with, any Internet communications by any 
> third party, or from the transmission of any viruses. Visit us at 
> http://www.indigo.co.uk/
>
>
>
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20131115/1fbf5b05/attachment.html>

More information about the Users mailing list