Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.7 Production Series
»
Filtering of VTI Traffic
« previous
next »
Print
Pages: [
1
]
Author
Topic: Filtering of VTI Traffic (Read 201 times)
8191
Jr. Member
Posts: 83
Karma: 4
Filtering of VTI Traffic
«
on:
September 07, 2024, 08:24:11 pm »
I have following sysctl values set:
Code:
[Select]
net.inet.ipsec.filtertunnel: 0
net.enc.in.ipsec_filter_mask: 2
net.enc.out.ipsec_filter_mask: 1
When filtering on enc0, traffic filtering does not apply. When filtering on a ipsecXYZ device (i.e. VTI device), filtering applies. This behaviour seems to be different from 24.1 and also different than described in
https://docs.opnsense.org/manual/vpnet.html#route-based-vti
.
Is this an intentional change, or are there other settings which might have an impact here?
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.7 Production Series
»
Filtering of VTI Traffic
