Answer the question
In order to leave comments, you need to log in
VPN set up - what to do next?
Good afternoon, I set up a vpn channel for nats. Chose ipsec strongwan. The virtual network 10.0.1.0\24 has been assigned.
But how will it now get access to the internal networks of clients, for example
Client1 (10.0.1.1) 172.16.0.11\24 -> VPS(Public IP) -> Client2 (10.0.1.2) 192.168.0.15\24
I want to drive traffic rdp, vnc, ssh and nothing else. That is, with client1 I want to have access to the network 192.168.0.0\24 and vice versa.
I just didn’t understand what I need to configure iptables or route so that the packets run. Who did share the team, please.
Answer the question
In order to leave comments, you need to log in
You don't have to do anything, everything should be described in the policies that the shwan creates. Packet routing with IPSec is done in the kernel based on policies. The only thing to do is to specify that outgoing packets do not break on the natom if they have ipsec.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question