I just got this router yesterday and struggling to get IPSec VPN working. OpenVPN is working fine but the server is not accepting any connections (nothing in the logs as well) with IPSec. Firewall is off and NAT Passthrough is enabled. Looking at the logs, I see the following which I think are causing the issue:
Jun 2 13:17:32 00[DMN] Starting IKE charon daemon (strongSwan 5.7.2, Linux 4.1.52, aarch64)
Jun 2 13:17:32 00[KNL] unable to set IPSEC_POLICY on socket: Operation not supported (95)
Jun 2 13:17:32 00[NET] installing IKE bypass policy failed
Jun 2 13:17:32 00[KNL] unable to set IPSEC_POLICY on socket: Operation not supported (95)
Jun 2 13:17:32 00[NET] installing IKE bypass policy failed
Jun 2 13:17:32 00[KNL] unable to set IPSEC_POLICY on socket: Operation not supported (95)
Jun 2 13:17:32 00[NET] installing IKE bypass policy failed
Jun 2 13:17:32 00[KNL] unable to set IPSEC_POLICY on socket: Operation not supported (95)
Jun 2 13:17:32 00[NET] installing IKE bypass policy failed
Jun 2 13:17:32 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts'
Everything else completes but with the bypasses failing, I assume that's not allowing traffic. Anything I can do to allow these policies to apply?
Jun 2 13:17:32 00[DMN] Starting IKE charon daemon (strongSwan 5.7.2, Linux 4.1.52, aarch64)
Jun 2 13:17:32 00[KNL] unable to set IPSEC_POLICY on socket: Operation not supported (95)
Jun 2 13:17:32 00[NET] installing IKE bypass policy failed
Jun 2 13:17:32 00[KNL] unable to set IPSEC_POLICY on socket: Operation not supported (95)
Jun 2 13:17:32 00[NET] installing IKE bypass policy failed
Jun 2 13:17:32 00[KNL] unable to set IPSEC_POLICY on socket: Operation not supported (95)
Jun 2 13:17:32 00[NET] installing IKE bypass policy failed
Jun 2 13:17:32 00[KNL] unable to set IPSEC_POLICY on socket: Operation not supported (95)
Jun 2 13:17:32 00[NET] installing IKE bypass policy failed
Jun 2 13:17:32 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts'
Everything else completes but with the bypasses failing, I assume that's not allowing traffic. Anything I can do to allow these policies to apply?