[Openswan Users] Openswan setting up two tunnels on different interfaces

[Dmitry Kochelaev]

Hi,

I’m trying to secure my infrastructure putting everything in virtual private network. What I currently have setup:
- Some servers in the cloud. All of them have two interfaces public - accessible from internet, private - accessible from the cloud only. Unfortunately, private here means shared private, so anybody from the cloud can access this ip’s (resolved with setting up firewall) and I don’t have any control on how traffic between servers goes, so it might be sniffed.
- One of the servers has Openswan installation (on public interface), so clients are connecting to this server. Traffic forwarding between VPN network and private shared network is also in place.

What I’d like to do is to setup Openswan on private interface as well, so all other servers could also connect through private network. In this case I’d have everything more or less secured.
However, I cannot find any helpful documentation on setting up two tunnels (or listening on two different interfaces) with openswan / xl2pd. Can anybody share experience / helpful links?

thanks in advance.