Test route-based/rw-shared-vti-ip6-in-ip4

strongSwan KVM Tests / route-based / rw-shared-vti-ip6-in-ip4

Test route-based/rw-shared-vti-ip6-in-ip4

Description

The roadwarriors carol and dave set up an IPv6-in-IPv4 connection each to gateway moon. Both carol and dave request an IPv6 virtual IP via the IKEv2 configuration payload.

The gateway moon uses route-based forwarding with VTI tunnels, with firewall rules to allow traffic to pass. The IKE daemon is configured to not install routes with charon.install_routes=0, and a static route is installed for the IPv6 virtual IP subnet on the VTI device.

Both carol and dave ping the client alice behind the gateway moon.

console.log

Test route-based/rw-shared-vti-ip6-in-ip4

Description

moon

carol

dave

tcpdump