]> git.ipfire.org Git - ipfire-2.x.git/commit
projects / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c557356) | patch
strongswan: Manually install all routes for non-routed VPNs
authorMichael Tremer <michael.tremer@ipfire.org>
Mon, 8 Apr 2019 15:41:24 +0000 (16:41 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Mon, 8 Apr 2019 15:44:57 +0000 (16:44 +0100)
commit918ee4a4cf5bb8d2a3ade16aac0dd643215c47e2
treee1ad4e65751daa70bb0d80c8680c28a849ec9a0atree | snapshot
parentc557356ea4878f7f6d0d9431246bfc8e75018672commit | diff
strongswan: Manually install all routes for non-routed VPNs

This is a regression from disabling charon.install_routes.

VPNs are routing fine as long as traffic is passing through
the firewall. Traps are not propertly used as long as these
routes are not present and therefore we won't trigger any
tunnels when traffic originates from the firewall.

Fixes: #12045
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
lfs/strongswan diff | blob | blame | history
src/patches/strongswan-ipfire-revert.patch [new file with mode: 0644] blob
src/scripts/ipsec-interfaces diff | blob | blame | history
IPFire 2.x development tree