Date: Fri, 26 Aug 2016 16:54:45 +0300 From: abi <abi@abinet.ru> To: Franco Fichtner <franco@lastsummer.de> Cc: freebsd-ports@freebsd.org Subject: Re: security/strongswan start=route issue Message-ID: <e8f7b37f-43ec-c396-1107-8d6e0caf1a04@abinet.ru> In-Reply-To: <B703B61A-A48D-4387-AF88-6ABE3255A2B2@lastsummer.de> References: <20160826100000.1126b42d107c93d648a8957a@abinet.ru> <B703B61A-A48D-4387-AF88-6ABE3255A2B2@lastsummer.de>
next in thread | previous in thread | raw e-mail | index | archive | help
Strange indeed. Yes, I ping correctly and auto=start works flawless. Is OPNsense tracking 10 branch? I'm on 11-RC1 On 26.08.16 10:05, Franco Fichtner wrote: > Hi, > >> On 26 Aug 2016, at 9:00 AM, abi <abi@abinet.ru> wrote: >> >> I'd like to open PR on upstream, but I want be sure that the problem exists not only for me, as the problem looks strange. >> The issue is that tunnel behaves different if it autostarts (auto=start) and when it starts when traffic registered between left and right side. (auto=route). > This works fine in our OPNsense setups. > > Make sure you use ping with the option "-S $LEFT_IP", it will > only auto-route local traffic that originates from within your > leftsubnet. > > > Cheers, > Franco
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?e8f7b37f-43ec-c396-1107-8d6e0caf1a04>