How to install FARP plugin for Strongswan?
-
Hello,
Scenario: Mobile VPN IKEv2 - EAP-MSCHAPv2
Endpoints: Pfsense, Windows 8 Agile VPN client
Description: When the VPN pool is a different subnet than the local network to be reached, a route needs to be added at VPN client OS for reaching the local network behind pfsense
Workaround: A VPN pool that is in the same subnet with the local network can be used. However ARP traffic is cripled.-
If proxy arp is enabled for the inside interface, ARP will function correctly only if local network initiates the connection. After that, MACs are learned and IPSEC traffic works bidirectionally
-
But if VPN client initiates the connection first (when proxy arp is enabled), ARP is still not being responded
/usr/local/lib/ipsec/plugins does not include farp plugin.
So how can I install FARP plugin?
https://wiki.strongswan.org/projects/strongswan/wiki/FarppluginThanks
-
-
You don't. It doesn't exist for FreeBSD.
https://lists.strongswan.org/pipermail/dev/2015-February/001237.html
-
thanks for the rapid response!