[strongSwan] Strongswan client config and network interface
noel at familie-kuntze.de
Mon Sep 29 22:11:33 CEST 2014
-----BEGIN PGP SIGNED MESSAGE-----
StrongSwan uses policy based routing by default, not route based routing.
That means that there is no device to route traffic into. Instead, there
are policies (ip xfrm policy) that decide where traffic gets routed to.
Also, please stop using ifconfig. It's horribly deprecated and unmaintained since 2006.
Mit freundlichen Grüßen/Regards,
GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
Am 29.09.2014 um 22:05 schrieb Justin Michael Schwartzbeck:
> I configured strongswan to act as an IKEv2 client as instructed in the documentation:
> Now I am able to create a client configuration in ipsec.conf named "client" and successfully establish the client connection using the "ipsec up client" command. However, I noticed that if I do an ifconfig command there is no interface for this connection, for example, no 'tun0' interface and when I check the route info there is nothing there pertaining to my vpn connection. I can do an "ipsec status client" and ipsec tells me the connection is up. It seems like ipsec is establishing the connection and maintaining the connection state, but doesn't bring up an interface in linux or change any of the routing information. Can someone give me some insight on how to set up strongswan to act as a vpn client in this way, or at least show me how to use the client connection after it has been set up?
> Users mailing list
> Users at lists.strongswan.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
-----END PGP SIGNATURE-----
More information about the Users