[Swan] mark in route-based VPN
Xinwei Hong
xhong at skytap.com
Thu Feb 9 19:52:59 UTC 2017
Hi,
In route-based VPN, mark is:
*mark=* The mark number to use for this connection's IPsec SA policy. It
will be used for all instances as well.
in the example, we have:
mark=5/0xffffffff
How are those numbers used? What do 5 and 0xffffffff mean here? What is the
guidance to select a number for it? e.g. when there are multiple VTIs
configured. Does this mark have anything to do with mark in iptables?
Thanks,
Xinwei
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20170209/15c80893/attachment.html>
More information about the Swan
mailing list