Hi, I remember seeing an article on Strongswan explains how to block network if Strongswan disconnects, but can’t find it anymore. Could anyone points me to it? I believe it works by marking packets with fwmark and drop them if it’s not set. I want to find the command that could achieve that. Thanks in advance.