Support for NAT-ed environments?

[saurabhnanda]

If some servers are inside EC2 and some are outside EC2, the configuration generated by this Ansible role does not work. I think it is because EC2 servers are sitting inside a NAT-ed environment.

If you can tell me how to set this up, I can raise a PR to implement this.

[kravietz]

@saurabhnanda this should work ike keying as racoon supports NAT-T (NAT traversal) extension to IKE. In theory, it should work out of the box, but the hosts behind NAT should be always initiating the IKE connection.