[strongSwan] IPsec drop policies 2
reterverv ercertecrterc
bernd1293 at inbox.lv
Mon Jan 6 09:11:34 CET 2020
Sorry for double mail and html version.
I have heard that with strongSwan IPsec drop policies (similar to passthrough policies) it should be possible to configure a kill switch as with OpenVPN.
Passtrough policies: https://wiki.strongswan.org/projects/strongswan/wiki/UsableExamples#Passthrough-policy
Is it possible to block everything with IPsec drop policies and allow only IPsec IKEv2 traffic?
And how do I configure this for OpenWRT?
My last IPsec IKEv2 settings are here: https://wiki.strongswan.org/issues/3291
Best regards
Bernd
More information about the Users
mailing list