1

Strongswan configuration to Cisco

view story
linux-howto

http://serverfault.com – We have an issue configuring Strongswan to a Cisco router. The connection is made, but I'm not getting the routing correct. There are multiple networks behind the router on the remote side (operated by a vendor) and we need to snat the IP's we come from to match their assigned range (so it routes back to us). ipsec status shows the connection: 000 "vpn": 10.10.0.42/32===12.34.56.78[12.34.56.78]:47/0---12.34.56.80...78.56.34.12[78.56.34.12]:47/0===10.10.254.1/32; erouted; eroute owner: #31 000 "vpn": newest ISAKMP SA: #29; newest IPsec SA: #31; 000 000 #31: "vpn" STATE_QUICK_I2 (sent QI2 (HowTos)