On Fri, 15 Oct 2021, Phil Nightowl wrote:
Perhaps you also want to reduce the 0.0.0.0/0 to the range you want to
talk to at the server end. Eg in both server and client config.
Okay, I hope this is what you had in mind. The resulting configs are now:
A brief summary:
server --------------- NAT1 -------- internet --- NAT2 ------ roadwarrior
172.16.0.129 172.16.0.254/1.2.3.4 10.0.0.x 10.0.0.y
Server (responder):
-------------------
conn roadw
conn kancl
Roadwarrior (initiator):
------------------------
conn server
Your connection names kancl and server do not match the connection name
in the logs of roadw. Are you sure the logs and configuration are
from the same run?
Paul
_______________________________________________
Swan mailing list
[email protected]
https://lists.libreswan.org/mailman/listinfo/swan
