Ok, seems to be achieved by PF rules on server side (for the VPN net) and StrongSwan settings on the client side (Android) -- i.e. blocking all traffic other than VPN and setting DNS servers in client config. VPN FAQ covers the rest. Thanks to the authors!! Works fine :)))
Отправлено из Yahoo Почты для Android вс, 20 нояб. 2022 в 10:47 Kostya Berger<berger...@yahoo.co.uk> написал(-а): Hello everyone.I'm planning to use OpenIKEv2 not just for VPN tunnel, but also to give client Internet access through that tunnel (none other for that client). Is it possible? Do I need additional config options or will default gateway become available on the system once connected to VPN? Thank you With kindest regards, Kostya Berger
