strongSwan KVM Tests / ikev2 / net2net-route-narrow
Test ikev2/net2net-route-narrow
Description
A trap policy on gateway sun will trigger SAs to gateway moon that connect the subnets behind the two gateways. Based on the received traffic selector from the triggering packet, gateway moon narrows down the traffic selectors to one of two options. Subsequent pings issued by client bob behind gateway sun to alice and venus located behind gateway moon trigger the trap policy and lead to the automatic establishment of the subnet-to-subnet tunnels. The updown script automatically inserts iptables-based firewall rules that let pass the tunneled traffic.