Hello all. Ok, another re-phrase, very quick question, hopefully for a quick answer. Please.
Is it possible to have net-2-net vpn, with both vpn gateways: (a) behind NAT, (b) having only 1 network interface? What example/test would be closest to this? Thanks. >Пятница, 30 марта 2018, 23:53 +03:00 от strongswan_u...@mail.ru: > >In other words: how alice and bob from ikev2/double-nat-net should be further >configured so that alice2, 10.1.0.11 could ping bob2, 10.2.0.11? Assuming, as >in the test, that the tunnel goes from alice, 10.1.0.10 to bob, 10.2.0.10. > >Thank you. > >>Пятница, 30 марта 2018, 21:02 +03:00 от strongswan_u...@mail.ru: >> >>Hello! >> >>Is there an example that I can study - when both client and server networks >>are behind NAT? ikev2, and PSK for simplicity. >> >>The ikev2/double-nat-net test seems to be closest, and it is supposed to show >>a *network* (bob, bob2,...) behind the server, but bob is the only one there >>(and alice doesn't even ping bob, she pings internal NAT interface). In my >>similar setup I can only have 1 client (alice) successfully pinging the >>server (bob). bob2 can't ping alice, and alice2 can't ping bob (so, >>peer-to-peer only). >> >>Thanks. --