[strongSwan] strongswan-5.1.x, NATed routing pb

Volker, Probably our last transition to strongswan-5.1.x issue is with the NATed host "academ", located behind the provider's gw at xx.xx.210.3. We are able to establish the tunnel, but the packets do not reach the remote network: [root@frqx ~]# strongswan status academ.certs.locally.stored Se

[strongSwan] strongswan-5.1.x, compression causses routing pb

Hello Volker, Thanks again for sharing your experience and ideas. >Did you try to disable IPComp? That's compress=no in ipsec.conf. And >just to be sure disable IPComp for every connection. You can still >re-enable it if everything works. You guess was right to the point! I replaced in all th

Re: [strongSwan] strongswan-5.1.x, tunnel and routing pb

Hello Serge, Hello Volker, We have an ongoing routing problem since the attempt to migrate from strongswan-4.x.x to strongswan-5.1.x Are there any ideas of what is going wrong ? sorry, no. I looked at your logs but couldn't find anything obvious. Did you try to disable IPComp? That's comp

[strongSwan] Can't access LAN with leftsubnet=0.0.0.0/0

Hello, I'm not sure whether I'm doing something wrong or whether this is by design... I have a strongSwan 5.1.0 server with strongSwan Android clients. The clients are unable to access LAN addresses when leftsubnet is set to 0.0.0.0/0, though they can access the Internet. The server config is: