Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 496 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[4.021] Parallel connections for Net-To-Net & Road

KKnecht


I think I am really sitting on my eyes !  
Trying to make several connections for Roadwarriors and ‘Net-To-Net’ Users.
All remote endpoints with dynamic IP addresses.
But only one connection is working at the same time.

Connection 1 (Roadwarrior):
=====================
Connection key: Users_key(s)
Local endpoint: Internet
Remote endpoint: Any
Local Subnet: Intranet_Network
Remote Subnet: none

Connection 2 (Standard):
=====================
Connection key: Users_key
Local endpoint: Internet
Remote endpoint: >> Dynamic address 


This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to oliver.desch
    Hi Oliver,

    Connection1 (Roadwarrior) is a Laptop with Astaro SSH Client / X.509 based - AES
    Connection2 (Standard) is a Netgear router with VPN capability / PSK based - 3DES

    So that means, the Router must support X.509 keys ?
    Then i could offer roadwarrior & standard connections at the same time (IF both are using X.509 keys)?

    Greetings to Karlsruhe,
    Karsten
  • 0 in reply to oliver.desch
    Hi,

    i understand now, that it's not possible to have 2 different kinds of IPSEC (PSK & X.509) with endpoint ANY.
    If you activate the second, the first will be killed.

    Because my router is only able to use PSK, i found my solution with V5. Router can use DynDNS.
    Created a network definition in V5 as 'DNS Hostname', so i was able to change my IPSEC-definition using PSK from "Dynamic Adress" to "Hostname.dyndns.org".

    Thank you Astaro !!!!  
Cookie Information Banner