Re: ikev2 and a win7 road warrior host

Pavel Shvagirev Tue, 22 May 2012 06:43:23 -0700

22.05.2012 17:23, Pavel Shvagirev P=P0P?P8QP0P;:
> peer.endpoint.net - is an initiator side (win7 machine). Win7's cert
> must be issued to that IP.
I mean "remote.endpoint.net" here


Two more notes:

1. Win7 connection shoud be set up to the openbsd's IP address, not the
FQDN. (the first tab in the connection Properties window).
2. "from $local_net to $client_net":
$local_net is the macros for the network that is behind the responder
side (openbsd's server local subnet - the subnet that initiator wants to
get tunneled access to)
$remote_net is the macros for the address pool where you are taking
clients' addresses from (in my case - 192.168.126.0/25).

-- 
Best regards,
Pavel Shvagirev
skype: pavel.shvagirev

Re: ikev2 and a win7 road warrior host

Reply via email to