Ubuntu

site to site Strong swan vpn 5.3 and internet sharing in 16.04 not working simultaneously

Asked by Joe Sec

Hey there,

We have a site to site Strong swan vpn 5.3 setup on an ubuntu box 16.04 which works perfectly fine but it loses VPN connectivity when internet sharing is configured on same box at one site. looks like iptable and NAT file needs to be configured for both vpn and internet sharing which i am not sure how. Any help would be appreciated.

Thank you

Question information

Language:
English Edit question
Status:
Expired
For:
Ubuntu Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:
Revision history for this message
actionparsnip (andrew-woodhead666) said : 		#1

Are you mixing the subnets up? if you cross subnets then routing will fail.

You also need to check the default gateway and DNS are working OK

Can you ping 8.8.8.8 when the sharing is setup?

Revision history for this message
Joe Sec (securejoe) said : 		#2

Our configuration is like this:

We have a site to site VPN which works fine without Internet sharing through public IP

Eg: we have our office in India and server cloud in Germany: we have extended local subnet(pvt network) over a public internet through strongswan vpn. When we try to enable internet connection sharing using the steps in this link https://help.ubuntu.com/community/Internet/ConnectionSharing VPN fails and internet works.

Revision history for this message
actionparsnip (andrew-woodhead666) said : 		#3

Could try an iptables forum too, they may be able to advise

Revision history for this message
Launchpad Janitor (janitor) said : 		#4

This question was expired because it remained in the 'Open' state without activity for the last 15 days.