out --pol none" added.
I have now removed this zone, the mentioned iptables options will not be
added and the traffic flows.
Does anyone understand this behavior? Is this a unsupported combination?
Thanks,
Peter
On 10/28/20 5:54 PM, Peter Hurtenbach via Shorewall-users wrote:
Strongsw
Hi,
I am trying to implement a Route-based VPN with Strongswan and XFRM Interfaces.
My problem is that the traffic coming / going to that XFRM Interface will be
blocked with "FORWARD REJECT".
Environment:
Debian 10 Buster (4.19.0-12)
Shorewall 5.2.3.2 (Debian Buster Repository)
iproute2
