How to install FARP plugin for Strongswan?
Scenario: Mobile VPN IKEv2 - EAP-MSCHAPv2
Endpoints: Pfsense, Windows 8 Agile VPN client
Description: When the VPN pool is a different subnet than the local network to be reached, a route needs to be added at VPN client OS for reaching the local network behind pfsense
Workaround: A VPN pool that is in the same subnet with the local network can be used. However ARP traffic is cripled.
If proxy arp is enabled for the inside interface, ARP will function correctly only if local network initiates the connection. After that, MACs are learned and IPSEC traffic works bidirectionally
But if VPN client initiates the connection first (when proxy arp is enabled), ARP is still not being responded
/usr/local/lib/ipsec/plugins does not include farp plugin.
So how can I install FARP plugin?
You don't. It doesn't exist for FreeBSD.
thanks for the rapid response!