Hello everyone!

I'm tried to make a configuration of setkey and racoon to encrypt all traffic.

many networks <------> |server| <----> L2channel <-----> |server| <-------> many networks


So I want to encrypt all traffic that passing between those 2 servers except those traffic that originates to servers or originates from servers.

how can I do it? What configuration will allow me to do it? Some examples?

At that moment I've got many lines like 

10.0.0.0/24 <-> 10.1.0.0/24
10.2.0.0/24 <-> 10.3.0.0/24
.....

I just want to encrypt all communication over unsecure channel.

Thanks in advance!