I am currently running a VPN Gateway by Strongswan on a CentOS 6.5 VPS.
The CentOS server has one eth port.
The VPN is using IKEv2 and the connections between clients and server are established. The clients are assigned virtual IPs drawn from a 10.0.0.0/24 pool. The clients can also access each other without a problem. However I notice that the server itself which acts as the VPN Gateway does not have a virtual IP address.
I am running some services on the VPS server which I would like to secure them by the VPN tunnel. If possible, I wouldn't expose them directly to the internet.
So I am wondering if there is a way for the connected VPN clients to access services on the server which acts as the VPN gateway through the tunnel? Thank you in advance.
leftsubnet
setting on the server and therightsubnet
setting on the client. If you use0.0.0.0/0
then the clients can access your server as usual because all traffic is tunneled.