[strongSwan] IPsec drop policies 2

reterverv ercertecrterc bernd1293 at inbox.lv
Mon Jan 6 09:11:34 CET 2020

Sorry for double mail and html version.

I have heard that with strongSwan IPsec drop policies (similar to passthrough policies) it should be possible to configure a kill switch as with OpenVPN.

Passtrough policies: https://wiki.strongswan.org/projects/strongswan/wiki/UsableExamples#Passthrough-policy

Is it possible to block everything with IPsec drop policies and allow only IPsec IKEv2 traffic?

And how do I configure this for OpenWRT?

My last IPsec IKEv2 settings are here: https://wiki.strongswan.org/issues/3291

Best regards


More information about the Users mailing list