On 2021-07-27, Vladimir Nikishkin <lockywolf@gmail.com> wrote:
> Hello, everyone.
>
> This is my iked.conf:
>
> ```
> ikev2 "for-phone" passive esp \
> from any to 10.0.3.2/32 \
> local egress peer any \
...
> dstid phone.mine \
> ikev2 "for-laptop" passive esp \
> from any to 10.0.3.3/32 \
> local egress peer any \
...
> dstid laptop.mine \
Two policies with "peer any" doesn't work.
> How to correct the setup?
Maybe it's possible by modifying the code, I'm not sure if the
id is sent early enough though so it might not be possible.
No comments:
Post a Comment