[strongSwan] disable_policy and disable_xfrm
noel.kuntze+strongswan-users-ml at thermi.consulting
Thu May 3 20:38:40 CEST 2018
From the documentation:
disable_policy - BOOLEAN
Disable IPSEC policy (SPD) for this interface
disable_xfrm - BOOLEAN
Disable IPSEC encryption on this interface, whatever the policy
On 03.05.2018 00:29, James Smith wrote:
> Can anyone tell me what the effect of disabling policy and xfrm in sysctl has? I see that it is done when I create a VTI tunnel or use 0.0.0.0 as a traffic selector, but I can't find any documentation as to what it actually does.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 833 bytes
Desc: OpenPGP digital signature
More information about the Users