[strongSwan] policy groups

Michi Mutsuzaki michi at cs.stanford.edu
Thu May 16 19:40:50 CEST 2013

Hi Martin,

>> how can I configure strongswan so that it never sends traffic in clear
>> text?
> Usually you can achieve this with a "routed" policy, i.e. one with the
> auto=route keyword to a rightsubnet= This will make sure no
> traffic leaves unencrypted. If no connection exists for the associated
> traffic, the kernel will trigger it.

Cool, this is exactly what I was looking for.


More information about the Users mailing list