strongSwan KVM Tests / ikev2 / force-udp-encap
Test ikev2/force-udp-encap
Description
The roadwarrior alice sitting behind the router moon sets up a tunnel to gateway sun. Since the firewall on sun blocks the ESP protocol, enforced UDP encapsulation (encap=yes) is used by alice to punch through this hurdle. Upon the successful establishment of the IPsec tunnels, the updown script automatically inserts iptables-based firewall rules that let pass the tunneled traffic. In order to test the tunnel, host alice pings the client bob behind the gateway sun.