If you are doing a zone based firewall, is there a way to capture ipsec traffic in a zone?
Unlike OpenVPN there is no interface to apply the rules to.
I found that internet-local will catch ipsec packets going from the remote subnet to the router but I can't seem to catch the rest of the packets that are going to the local network. (internet being the WAN interface)
Thanks,
Magnus
