[vpn-help] Multiple clients on same subnet

Kevin Mellor k.mellor at theiet.org
Wed Nov 10 15:56:47 CST 2010 

Thanks Chris,

 

Thanks for replying.

 

I don't think it's an identifier issue as if I specify the local host to be
'Using an existing adapter and current address' then multiple clients can
connect using the same identifier.

 

What I have noticed is if I choose 'Use virtual adapter and an assigned
address' and I specify 192.0.3.0/255.255.255.0 then both clients try to use
192.0.3.0 but I thought clients would be allocated a 192.0.3.x address
(hence multiple clients could use that subnet).  Can anyone confirm how this
setting works and if multiple clients on the same specified subnet and same
identifier should work?

 

Thanks

 

Kev

 

From: Chris DiPesa [mailto:cdipesa at flipkey.com] 
Sent: 10 November 2010 21:49
To: 'Kevin Mellor'; vpn-help at lists.shrew.net
Subject: RE: [vpn-help] Multiple clients on same subnet

 

The problem is the number of concurrent logins that is associated with the
Identifier has to be increased. The only other explanation is your firewall
only supports one firewall tunnel at a time but I'm seeing online that it
supports several. I'm not so familiar with pfense products but with Juniper
the IKE ID (which is similar to the Identifier in pfense) has a number of
logins associated with it. 

  _____  

From: vpn-help-bounces at lists.shrew.net
[mailto:vpn-help-bounces at lists.shrew.net] On Behalf Of Kevin Mellor
Sent: Wednesday, November 10, 2010 4:35 PM
To: vpn-help at lists.shrew.net
Subject: [vpn-help] Multiple clients on same subnet

 

Hi all,

 

I hope someone can answer me this.

 

I have a pfSense firewall with mobile IPSec enabled and am using the Shrew
VPN client for road warriors.

 

I have followed the instructions here

 

http://doc.pfsense.org/index.php/IPSec_Road_Warrior/Mobile_Client_How-To

 

and it works great - I'm using mutual pre shared key authentication and am
specifying the local host subnet.

 

 

My question is, is it possible to create 1 configuration and distribute to
all road warriors?  I know they can all share the same pre-shared key but
when a second user connects the first user gets disconnected.  Is this
because both users specify the same local host subnet?  Should the first
user get disconnected? Can multiple users share the same subnet?

 

Thanks

 

Kev


______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20101110/6168354c/attachment-0002.html>

More information about the vpn-help mailing list