ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity

testing: Enable outbound FWD policies in swanctl/manual-prio scenario

This commit is contained in:
Tobias Brunner 2016-08-18 17:09:15 +02:00
parent 50721a61d8
commit 62636da4f3
1 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
testing/tests/swanctl/manual-prio/hosts/moon/etc/swanctl/swanctl.conf
View File

@ -16,7 +16,8 @@ connections {
local_ts = 10.1.0.0/16 local_ts = 10.1.0.0/16
priority = 2 priority = 2
interface = eth0 interface = eth0
policies_fwd_out = yes
esp_proposals = aes128gcm128-modp3072 esp_proposals = aes128gcm128-modp3072
} }
} }
@ -32,15 +33,15 @@ connections {
local_ts = 0.0.0.0/0 local_ts = 0.0.0.0/0
remote_ts = 0.0.0.0/0 remote_ts = 0.0.0.0/0
interface = eth0 interface = eth0
priority = 4 priority = 4
mode = drop mode = drop
start_action = trap start_action = trap
} }
pass-ssh-in { pass-ssh-in {
local_ts = 0.0.0.0/0[tcp/ssh] local_ts = 0.0.0.0/0[tcp/ssh]
remote_ts = 0.0.0.0/0[tcp] remote_ts = 0.0.0.0/0[tcp]
priority = 1 priority = 1
mode = pass mode = pass
start_action = trap start_action = trap
@ -61,6 +62,6 @@ connections {
mode = pass mode = pass
start_action = trap start_action = trap
} }
} }
} }
} }