strongSwan KVM Tests / ikev2 / net2net-route
Test ikev2/net2net-route
Description
A tunnel that will connect the subnets behind the gateways moon and sun, respectively, is preconfigured by installing a %trap eroute on gateway moon by means of the setting start_action = trap in swanctl.conf. A subsequent ping issued by client alice behind gateway moon to bob located behind gateway sun triggers the %trap eroute and leads to the automatic establishment of the subnet-to-subnet tunnel.The updown script automatically inserts iptables-based firewall rules that let pass the tunneled traffic.
