[strongSwan-dev] Customize route for Android App
wsongcn at gmail.com
Thu Dec 18 12:47:33 CET 2014
My bad, typo. What i want is latter.
Sounds not fun, because my list has about 900 items. A reverse would be
quite hard to get.
On Dec 18, 2014 7:20 PM, "Tobias Brunner" <tobias at strongswan.org> wrote:
> > My problem is that my intent is blacklist which means I have a list of
> > subnets that I want to route through VPN and the rest not. Am I able to
> > do that?
> If you want to send only traffic to a specific list of subnets through
> the VPN tunnel and the rest not then just define these subnets in
> leftsubnet, e.g. leftsubnet=10.0.2.0/24,10.0.5.0/24,10.1.0.0/16, on the
> server. The client proposes 0.0.0.0/0 which gets narrowed to that list.
> If what you wrote above is not entirely accurate and you actually do
> **not** want to tunnel traffic to a specific list of subnets but all
> other traffic, then you'd have to list the inverse list of subnets
> (which could get quite long). For instance, if you want to tunnel all
> traffic (0.0.0.0/0) except that to private address ranges (10.0.0.0/8,
> 172.16.0.0/12, 192.168.0.0/16) then you'd define:
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Dev