[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: CIDR, ipsec flows and routing
> Am I trying to do something really stupid?
> Is this a bug or am I misunderstanding how things should work?
> Should I just give up on this idea, and try another approach?
> Is there a way I could make this work?
You are misunderstanding how things should work. The routing and IPsec
do not happen at the same level; IPsec occurs first. Thus, if you have
overlapping rules between routing and IPsec, IPsec always "wins".