On 6/8/2022 1:11 PM, Ed Hunter wrote:
Correction for the zones
zones
tstgw:net ipv4#TST access gateway
tsgws:tstgw ipsec mode=tunnel mss=1400 #TST VPN
tssft:net ipv4
tssfp:tssft ipsec
On 8 Jun 2022, at 14:00, Ed Hunter wrote:
I don't know why you lost access to internal resources, but it may be important
to understand that. It seems like your NAT rule applied when it shouldn't
have.
The usual way to deal with overlapping subnets is netmap.
https://shorewall.org/netmap.html
--
Justin
Hi everyone,
I have a pretty complex setup on a debian server with a lot of moving parts,
quagga, shorewall and of course strongswan. I am using it as a gateway. This
was not set up by me but I’m administering it so bear with me.
I am trying to set up NAT for a VPN since our subnets are
Correction for the zones
zones
tstgw:net ipv4#TST access gateway
tsgws:tstgw ipsec mode=tunnel mss=1400 #TST VPN
tssft:net ipv4
tssfp:tssft ipsec
On 8 Jun 2022, at 14:00, Ed Hunter wrote:
Hi everyone,
I have a pretty complex
Hi everyone,
I have a pretty complex setup on a debian server with a lot of moving parts,
quagga, shorewall and of course strongswan. I am using it as a gateway. This
was not set up by me but I’m administering it so bear with me.
I am trying to set up NAT for a VPN since our subnets are
