Hello Everyone,
I was testing VTI tunnel and by default strongswan install routing tables 220 which cause vti tunnel not route traffic correct direction.
Solution to this problem is set the following parameter into strongswan.conf
install_routes = 0
Will be nice to have proper cli flag when we set vpn tunnel vti bind.
As example
#New option set vpn ipsec site-to-site peer 1.1.1.1 vti install_route disable set vpn ipsec site-to-site peer 1.1.1.1 vti bind vti0 set vpn ipsec site-to-site peer 1.1.1.1 vti esp-group LAN2LAN-P2