<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p.MsoPlainText, li.MsoPlainText, div.MsoPlainText
{mso-style-priority:99;
mso-style-link:"Plain Text Char";
margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Tahoma","sans-serif";}
span.PlainTextChar
{mso-style-name:"Plain Text Char";
mso-style-priority:99;
mso-style-link:"Plain Text";
font-family:"Tahoma","sans-serif";}
.MsoChpDefault
{mso-style-type:export-only;}
@page Section1
{size:612.0pt 792.0pt;
margin:70.85pt 70.85pt 70.85pt 70.85pt;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=RO link=blue vlink=purple>
<div class=Section1>
<p class=MsoPlainText><span style='font-size:10.0pt'><o:p> </o:p></span></p>
<p class=MsoPlainText><span style='font-size:10.0pt'>Hi again,... <o:p></o:p></span></p>
<p class=MsoPlainText><span style='font-size:10.0pt'><o:p> </o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt'>-
Default route (ip route show match 0/0)<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt'> <o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt;text-indent:35.4pt'><span
style='font-size:10.0pt;color:red'>default dev ppp0 scope link<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt'><o:p> </o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt'>-
Configuration on ppp0 (ip addr list ppp0)<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt'> <span
style='color:red'>9: ppp0: <POINTOPOINT,MULTICAST,NOARP,UP,10000> mtu
1492 qdisc pfifo_fast qlen 3<o:p></o:p></span></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt;
color:red'> link/ppp<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt;
color:red'> inet
89.123.122.76 peer 89.123.64.254/32 scope global ppp0<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt'> <o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt'>-
The function defaultinterface from your running _startklips (tail -n +210
/usr/lib/ipsec/_startklips | head -22)<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:35.4pt'><span style='font-size:10.0pt'> <o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'># interfaces=%defaultroute: put ipsec0 on top of default
route's interface<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>defaultinterface() {<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> phys=`netstat -nr |<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>
awk '$1 == "0.0.0.0" && $3 == "0.0.0.0" { print $NF
}'`<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> if test "
$phys" = " "<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> then<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>
echo "no default route, %defaultroute cannot cope!!!"<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>
exit 1<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> fi<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> if test `echo "
$phys" | wc -l` -gt 1<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> then<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>
echo "multiple default routes, %defaultroute cannot cope!!!"<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>
exit 1<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> fi<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> next=`netstat -nr |<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>
awk '$1 == "0.0.0.0" && $3 == "0.0.0.0" { print $2
}'`<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> if [ "$next" =
"0.0.0.0" ] ; then<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>
next=`ip addr list $phys | grep -E "^ +inet6*.*scope global $phys" |<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>
awk '{ if($3=="peer")print $4; else print $2 }' | awk -F / '{ print
$1 }'`<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> fi<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'> klipsinterface
"ipsec0=$phys" $next<o:p></o:p></span></p>
<p class=MsoPlainText style='margin-left:70.8pt'><span style='font-size:10.0pt;
color:red'>}<o:p></o:p></span></p>
<p class=MsoPlainText><span style='font-size:10.0pt;color:black'>Bye all<o:p></o:p></span></p>
<p class=MsoPlainText><span style='color:red'><o:p> </o:p></span></p>
<p class=MsoPlainText><span lang=EN-US>-----Original Message-----<br>
From: Paulo F. Sedrez [mailto:sedrez+openswan@sedrez.ods.org] <br>
Sent: Wednesday, August 29, 2007 12:23 PM<br>
To: Toni Cosma<br>
Cc: 'Paulo F. Sedrez'; petermcgill@goco.net; users@www.openswan.org<br>
Subject: RE: [Openswan Users] roadwarrior over pppoe</span><o:p></o:p></p>
<p class=MsoPlainText><o:p> </o:p></p>
<p class=MsoPlainText>On Wed, 2007-08-29 at 09:54 +0300, Toni Cosma wrote:<o:p></o:p></p>
<p class=MsoPlainText>> Hi all,<o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>> I have patched openswan source with:<o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>>
root@B:/usr/src/openswan-2.4.9# patch -p1<o:p></o:p></p>
<p class=MsoPlainText>> < ../openswan-2.4.9-stkl.patch<o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>> but at B side same error:<o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>> Aug 29 09:32:40 B ipsec_setup: KLIPS ipsec0 on ppp0<o:p></o:p></p>
<p class=MsoPlainText>> 89.123.122.76/255.255.255.255 pointopoint
89.123.64.254<o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>> Aug 29 09:32:41 B ipsec_setup: ...Openswan IPsec
started<o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>> Aug 29 09:32:41 B ipsec_setup: Starting Openswan
IPsec 2.4.9...<o:p></o:p></p>
<p class=MsoPlainText>> <o:p></o:p></p>
<p class=MsoPlainText>> Aug 29 09:32:41 B ipsec__plutorun: ipsec_auto: fatal
error in<o:p></o:p></p>
<p class=MsoPlainText>> "A-B_rw": %defaultroute requested but not
known<o:p></o:p></p>
<p class=MsoPlainText><o:p> </o:p></p>
<p class=MsoPlainText>That's weird. I have this here working fine (FC6 +
openswan/klips 2.4.9<o:p></o:p></p>
<p class=MsoPlainText>+ kernel 2.6.20-1.2962.fc6).<o:p></o:p></p>
<p class=MsoPlainText><o:p> </o:p></p>
<p class=MsoPlainText>Could you please send me some information?<o:p></o:p></p>
<p class=MsoPlainText><o:p> </o:p></p>
<p class=MsoPlainText>- Default route (ip route show match 0/0)<o:p></o:p></p>
<p class=MsoPlainText>- Configuration on ppp0 (ip addr list ppp0)<o:p></o:p></p>
<p class=MsoPlainText>- The function defaultinterface from your running
_startklips <o:p></o:p></p>
<p class=MsoPlainText>(tail -n +210 /usr/lib/ipsec/_startklips | head -22)<o:p></o:p></p>
<p class=MsoPlainText><o:p> </o:p></p>
<p class=MsoPlainText>Thank you.<o:p></o:p></p>
<p class=MsoPlainText><o:p> </o:p></p>
<p class=MsoPlainText>-- <o:p></o:p></p>
<p class=MsoPlainText>Paulo F. Sedrez <sedrez+openswan@sedrez.ods.org><o:p></o:p></p>
<p class=MsoPlainText><o:p> </o:p></p>
<p class=MsoPlainText><o:p> </o:p></p>
</div>
</body>
</html>