Hi Meera,
Do you resolve your problem? I meet a problem same like you. And I just setup one tunnel with mark support. If I mark it in the PREROUTING chain, the icmp request isn't sent in tunnel. But if I set MARK in OUTPUT chain, the icmp request is packed in ESP but no reply. I think maybe there are still some problem in iptables rules. Can anyone give us a suggestion? BR ethan
_______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users
