[Swan] Issue with site-to-site VPN to pfSense
Paul Wouters
paul at nohats.ca
Wed Oct 6 18:45:04 UTC 2021
On Wed, 6 Oct 2021, Chris Adams wrote:
> Once upon a time, Paul Wouters <paul at nohats.ca> said:
>> Please do try 4.5
>
> I took the Fedora 35 SRPM of libreswan-4.5, rebuilt it for CentOS
> 8-stream, and tried it - same behavior. One subnet on each side works,
> add the second subnet to the libreswan config and the traffic appears to
> be on the wrong connection (and XfrmInTmplMismatch increments).
Can you mail me (offlist) the output of "ipsec status" and "ip xfrm
state" and "ip xfrm policy" when it is stuck in this situation?
Paul
More information about the Swan
mailing list