Use source address in get_nexthop() call
[strongswan.git] / src / libhydra / plugins / kernel_netlink / kernel_netlink_ipsec.c
index ac9d9fe..31ca717 100644 (file)
@@ -2167,7 +2167,8 @@ static status_t add_policy_internal(private_kernel_netlink_ipsec_t *this,
                {
                        /* get the nexthop to src (src as we are in POLICY_FWD) */
                        route->gateway = hydra->kernel_interface->get_nexthop(
-                                                                               hydra->kernel_interface, ipsec->src);
+                                                                                       hydra->kernel_interface, ipsec->src,
+                                                                                       ipsec->dst);
                        /* install route via outgoing interface */
                        route->if_name = hydra->kernel_interface->get_interface(
                                                                                hydra->kernel_interface, ipsec->dst);