[strongSwan-dev] libipsec and auto=route
Zachery Stoddard
zacherystoddard at gmail.com
Mon Mar 16 16:13:08 CET 2015
I'm having a tough time understanding why my configuration is unable
to start connections based on traffic.
First things first, I'm using libipsec.
In my log I'm getting a message like this for every packet that should
start the tunnel:
2015-03-16 11:04:37 14[ESP] could not find an outbound IPsec SA for
reqid {1}, dropping packet
config looks like this:
conn test
keyexchange=ikev2
ike=aes256-sha384-dh2048
esp=aes256-sha384
left=%any
leftsubnet=192.168.1.1/24[%any/%any]
right=50.78.156.51
rightsubnet=192.168.102.0/24[%any/%any]
leftauth=psk
rightauth=psk
type=tunnel
auto=route
Does libipsec even support starting tunnels with auto=start?
More information about the Dev
mailing list