Hi Graham,
[ Strongswan is also using the list of allowed subnets to set up ip xfrm
policies. I'm not sure if I want these or understand them, but I'll leave
them be until I learn more about xfrm. ]
Based on the older IPsec standards (RFC2401), the Linux kernel does not
support (multiple)
Martin, Andreas,
We're in the process of opting out of strongSwan managing routes when
setting up and tearing down tunnels (by setting strongswan.conf's
charon.install_routes option to 'no').
However, although strongswan is no longer installing the routes, whenever
the tunnel goes down it looks
Hello all,
I have been running strongSwan for a while on some of my
networks and have been having a few stability issues. I am
working on getting to root cause on a few of them and was
wondering if other people are having these issues:
1.) DPD'd connections with dpaction=restart sometimes stop
