strongSwan KVM Tests / ikev2 / nat-virtual-ip
Test ikev2/nat-virtual-ip
Description
The router moon sets up a connection to gateway sun in order to reach the subnet hidden behind sun. The gateway sun assigns a virtual IP address to router moon. A special nat_updown script on moon dynamically inserts a source NAT rule which maps the IP address of client alice to the virtual IP of moon. This allows alice to access client bob via the established IPsec tunnel.