[strongSwan] StrongSwan w/ multiple local subnets.
Brian Topping
brian.topping at gmail.com
Sat Jun 20 04:56:37 CEST 2020
Sounds like you’re unable to look at traffic on both sides. Unless you’re looking closely at the logs and know what’s happening, it’s hard to debug. It also looks as if you’ve rather heavily sanitized the console logs, for instance the ping destination.
This line concerns me:
> Jun 19 19:57:11 14[KNL] error installing route with policy 10.3.0.0/24 === 10.10.0.0/24 out
If your are coming from or going to 100.100.100.100 and using transport instead of tunnel, these routes being installed are wrong, which becomes a configuration issue.
Best way to post is to take the console output verbatim, then replace the first two octets of every IP address you want to sanitize with unique letters so the addresses can be distinguished. Easier if you can put the content into something like pastebin or gist instead of mailing to the list for viewing purposes.
Sent from my iPhone
> On Jun 19, 2020, at 19:28, TomK <tomkcpr at mdevsys.com> wrote:
>
> Jun 19 19:57:11 14[KNL] error installing route with policy 10.3.0.0/24 === 10.10.0.0/24 out
More information about the Users
mailing list