[strongSwan] IPSEC remote access routing

Dusan Ilic dusan at comhem.se
Sat Jan 28 17:40:01 CET 2017


Hello,

I have Strongswan with remote access, clients can reach the local remote subnet and also reach the internet, however the Strongswan server have multiple wan interfaces and only one of them  does Strongswan listen to. Problem is vpn clients are routed out this same interface to the internet, while the server have a default route out another wan interface. Why doesnt the vpn clients traffic respect the Strongswan servers routing table? I want the clients to access the internet through the default route, and not out the incoming ipsec wan interface.

Hope i made myself clear :)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170128/649366b3/attachment.html>


More information about the Users mailing list