Project

General

Profile

Actions
Copy link

Bug #6435

closed

epdg: fix inter-UE traffic

Added by lynxis 3 months ago. Updated 18 days ago.

Status:
Closed
Priority:
Normal
Assignee:
lynxis
Target version:
-
Start date:
04/08/2024
Due date:
% Done:

100%

Description

Currently traffic from 1 UE to another UE on the same epdg is blocked by the firewall.
The root cause is that the traffic is not forwarded into the gtp interface towards the PGW.
The problem lies in the xfrm, which applies.

So far there might be 2 options:
a) try to use a VTI interface
b) try to add fwmark to the xfrm rule so it only applies for traffic which comes out of the gtp (which got itself marked by nftables).

Actions
Copy link
 #1

Updated by laforge about 1 month ago

lynxis, is this still the case? It states "in progress" since April 8.

Actions
Copy link
 #2

Updated by lynxis 18 days ago

  • Status changed from In Progress to Closed

Fixed via fwmark.
Configure xfrm policies by strongswan to have differnet fwmarks for in and out going traffic.
Further it required to change the firewall.

Actions
Copy link
 #3

Updated by lynxis 18 days ago

  • % Done changed from 0 to 100
Actions
Copy link

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 48.8 MB)