[Openswan Users] Multiple connections from clients are behind the same NAT !

Bob Miller bob at computerisms.ca
Sun Jul 6 16:24:07 EDT 2014 

My investigation into getting multiple clients connecting simultaneously
from behind the same nat device was specific to libreswan, but I expect
the knowledge is pertinent to openswan as well.  I found there are two
ways to accomplish this.

One is to use klips with the saref patch.  The other is to use xauth.
xauth has the advantage of still working with netkey and essentially
eliminating the xl2tp layer, but has the disadvantage that it cannot be
used natively from a windows machine; you need a 3rd party client.  I
believe the one that was recommended was shrewsoft.

Hope that helps...

   
-- 
Computerisms
Bob Miller	
867-334-7117 / 867-633-3760
http://computerisms.ca


On Sun, 2014-07-06 at 16:15 +1000, Paul Young wrote:
> Hi,
> 
> 
> I have not been able to get more that one connection to work at the
> same time with a similar setup. I feel that it might not be possible.
> 
> 
> I'll try it again and see what the logs say. 
> 
> 
> On 3 July 2014 00:22, Patrick Naubert <patrickn at xelerance.com> wrote:
>         Rescued from the Spam bucket.  Please remember to subscribe to
>         the mailing list before posting to it.
>         
>         From: "CpServiceSPb ." <cpservicespb at gmail.com>
>         
>         Subject: Multiple connections from clients are behind the same
>         NAT !
>         
>         Date: June 30, 2014 at 4:17:36 PM EDT
>         
>         To: users at lists.openswan.org
>         
>         
>         
>         There is OpenSwan at Ubuntu 12.04/14.04 as xl2tpd installed
>         and there are some Win XP/7 clients which are actually behind
>         the same NAT with one white IP.
>         
>         And l2tp/Ipsec is with PSK. 
>         
>         And is it possible to connect simulteniously two and more such
>         clients at the same time to the l2tp/ipsec openswan server ?
>         
>         
>         
>         
>         
>         
>         
>         _______________________________________________
>         Users at lists.openswan.org
>         https://lists.openswan.org/mailman/listinfo/users
>         Micropayments:
>         https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
>         Building and Integrating Virtual Private Networks with
>         Openswan:
>         http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>         
> 
> 
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155

More information about the Users mailing list