On Mon, 10 Aug 2020, Antony Antony wrote:
Thanks for the testcase. Unfortunately, north has no second uplink/interface to reach east. So the test can't send the traffic yet. Now we can verify rules and verify "ip x s" mark/mask. Let me see if there is another way to test to able to send traffic with fwmark. Add another rule or something, change http to "nc" as a listener on east.
You can add another type of interface. A redhat test did something like this: ip tunnel add test0 mode gre local 192.1.2.23 remote 192.1.2.45 then use the test0 interface. Paul _______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
