Hi,
I have two different VPN servers behind ONE NAT address. Yes, I know it is nonsense, but it is the situation given here. One runs with 500/4500. Everything is find. I configured the firewall to forward packets on these port to the first VPN server. I want to use port 510 and 4510 for the second server. I configured charon.conf according. On the client side I configured rightikeport=510. So the client sends the init request from port 500 to port 510. The server recognizes the NAT-T on both ends, sends back the response. The clients sends third packet from port 4500 to port 4500, which fails of course. Is there any possibility to tell the client to use port 45100 of the ESP-encap port? Mit freundlichen Grüßen, -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief Aufsichtsratsvorsitzender: Florian Kirstein
signature.asc
Description: OpenPGP digital signature