This conn will be used to provide a default action for packets received from other hosts behind the gateway, that are addressed to any remote system.
The default action is OE group, with a failureshunt of clear. This means that pluto will do a DNS lookup for the TXT record of the IP in the src address, see if it delegates to the gateway, and if it does, it will then do a DNS lookup for the TXT record for the dst address, and if it exists, attempt OE. If either lookup fails, the packet goes in the clear.
The eroute will look like:
1 0.0.0.0/0 -> 0.0.0.0/0 => %trap
