[strongSwan] policy groups
michi at cs.stanford.edu
Thu May 16 19:40:50 CEST 2013
>> how can I configure strongswan so that it never sends traffic in clear
> Usually you can achieve this with a "routed" policy, i.e. one with the
> auto=route keyword to a rightsubnet=0.0.0.0/0. This will make sure no
> traffic leaves unencrypted. If no connection exists for the associated
> traffic, the kernel will trigger it.
Cool, this is exactly what I was looking for.
More information about the Users