strongSwan KVM Tests / ikev2 / ip-two-pools

Test ikev2/ip-two-pools

Description

The hosts alice and carol set up a tunnel connection each to gateway moon. Both hosts request a virtual IP via the IKEv2 configuration payload. Gateway moon assigns virtual IP addresses from pool1 with an address range of 10.3.0.0/28 to hosts connecting to the eth0 (192.168.0.1) interface and virtual IP addresses from pool2 with an address range of 10.4.0.0/28 to hosts connecting to the eth1 (10.1.0.1) interface.

Thus carol is assigned 10.3.0.1 whereas alice gets 10.4.0.1 and both ping the gateway moon.

alice moon carol winnetou dave

moon

 

carol

 

alice

 

tcpdump