[strongSwan] Question about routing (maybe OT)
Harald Dunkel
harald.dunkel at aixigo.de
Fri Mar 9 10:42:06 CET 2018
Hi folks,
Question: If a roadwarrior running MacOS sets up a connection
via IPv4 to my strongswan server, then the Mac gets an additional
routing entry for my server, e.g.
192.168.1.209 10.100.0.1 UGHS 0 0 en0
192.168.1.209 in this example is the IP address of my server.
10.100.0.1 is the default gateway in the road warriors local
network. Payload is IPv4 only. IKEv2.
Question is, who tells the Mac to setup this routing entry?
Is this initiated by Charon on my server somehow, or is this
Apple's code?
Point is, using IPv6 for ike and esp there is no such routing
entry on the Mac, even though the IPsec connection still might
affect IPv4 routing for 192.168.1.209.
Every helpful comment is highly appreciated
Regards
Harri
More information about the Users
mailing list