[strongSwan] Strongswan using VTI - got it working!
Jeff Leung
jleung at v10networks.ca
Sun Mar 8 09:52:22 CET 2015
> One thing to note in particular in both cases - VyOS does not delete
the default route in
> table 220 as generated by strongSwan. I suspect for some reason the
way how the VTI
> tunnels are configured is causing the network stack not to redirect
marked packets to the
> VTI tunnel interface.
To correct what I have said earlier, for some reason the network stack
is sending everything except ESP traffic between the peers inside the
newly established VTI tunnel. This behavior was not observed in
strongSwan 4.5.2 at all.
More information about the Users
mailing list