Hello.
Would you be so kind as to advise how to allow share one certificate and allow multiple connections with one certificate behind NAT.
I did try several variants with wildcard certificates and remote-id match but no luck
My indentity is
peer=peerIKE2 auth-method=digital-signature mode-config=IKEv2cfg1 match-by=certificate certificate=eink_vpn_server remote-certificate=eink_vpn_fqdn generate-policy=port-strict
Thank you.