[strongSwan] Most specific match with intersecting subnets
Zachery Stoddard
zacherystoddard at gmail.com
Tue Mar 18 15:01:14 CET 2014
Given the following setup, why isn't my more specific tunnel starting???
2 tunnels configured to start on traffic (auto=route).
The 2 tunnels protect subnets that intersect or overlap, such as
tun1:rightsubnet=10.1.1.1/8 and tun2:rightsubnet=10.2.2.2/32
If the wider tunnel (tun1) comes up first then the narrow tunnel (tun2)
never comes up! Traffic for the tun2 destination of interest just gets
routed down tun1.
Is there a way to configure around this?
Is this an intended operation? or is this a bug???
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20140318/01089b3b/attachment.html>
More information about the Users
mailing list