[strongSwan] trouble with the traffic selector
Ccf Cloud
ccfcloud at gmail.com
Fri Oct 25 09:58:54 CEST 2013
Hi Martin,
Okay so that explains the presence of the routes. But what about all the
ESP packets going through wlan0 interface. Shouldn't they go through the
tun0?
On Fri, Oct 25, 2013 at 1:09 PM, Martin Willi <martin at strongswan.org> wrote:
> Hi,
>
> > With this when I run tcpdum on both tun0 and wlan0, I see all the ESP
> > packets going through Wlan0 and not tun0.
>
> I'd say that's the idea; plain packets go over the virtual adapter,
> encrypted ones over your physical connection.
>
> > What am I missing here? Why is the route added as 0.0.0.0/1?
>
> > 0.0.0.0/1 dev tun0 scope link
> > 128.0.0.0/1 dev tun0 scope link
>
> The default route (0.0.0.0/0) gets split up two sub-routes covering the
> same range. This is done to avoid any conflicts with the default route
> and to enforce a higher priority for the VPN connection.
>
> Regards
> Martin
>
>
>
>
Thanks & Regards
Sam
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20131025/37217f64/attachment.html>
More information about the Users
mailing list