On Fri, 10 May 2019, Nick Howitt wrote:
Hi Paul, In my configs, I never use it and it seems to work fine. I am wondering when it is needed? I can see a possibly case when the IPsec server is on a multi-homed LAN and you don't want to route through the default gateway. I know it can take a value of %direct, but when testing on the LAN I seemed to remember it worked correctly between two servers on the LAN without it being set.
It is almost never needed anymore. I've thought about if we were ready to obsolete the option, but i think there are a few corner cases left where it is needed. Paul _______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
