LibreSwan IKEv2 multiple left subnet for vpn splitting

Question

I have built an IKEv2 VPN server.

The current config in /etc/ipsec.d/ikev2.conf is like this:

  conn ikev2-cp
  left=%defaultroute
  leftcert=58.xx.xx.xxx
  leftsendcert=always
  leftsubnet=192.168.1.0/18
  leftrsasigkey=%cert
  right=%any
  rightid=%fromcert
  rightaddresspool=192.168.43.10-192.168.43.250
  rightca=%same
  rightrsasigkey=%cert
  narrowing=yes
  dpddelay=30
  retransmit-timeout=300s
  dpdaction=clear
  auto=add
  ikev2=insist
  rekey=no
  pfs=no
  ike=aes256-sha2,aes128-sha2,aes256-sha1,aes128-sha1
  phase2alg=aes_gcm-null,aes128-sha1,aes256-sha1,aes128-sha2,aes256-s>
  ikelifetime=24h
  salifetime=24h
  encapsulation=yes
  leftid=58.xx.xx.xxx
  modecfgdns="8.8.8.8 8.8.4.4"
  mobike=no

What I want to happen is all vpn client request from ip subnets 192.168.1.0/24 and 192.168.43.0/24 will only go through the vpn tunnel. other request, ip addresses not in that subnet will be connected directly and not from the vpn tunnel.

I tried:

leftsubnet=192.168.1.0/24,192.168.43.0/24

This still don't work. It makes both IP subnets unreachable.

I also tried this one:

leftsubnet={192.168.1.0/24, 192.168.43.0/24}

I even tried the plural form:

leftsubnets={192.168.1.0/24, 192.168.43.0/24}

but the two subnets is still unreachable.

It only works when I provide only 1 leftsubnet

leftsubnet=192.168.1.0/18

The problem with this is request from 192.168.1.1 - 192.168.63.254 will go through the vpn tunnel.

I only want 192.168.1.0/24 and 192.168.43.0/24 to go through the tunnel.

Any workaround or fix for this problem?