[Openswan Users] Updating only after negotiation is complete and
when loss of peer (fwd)
Michael Richardson
mcr at sandelman.ottawa.on.ca
Sun Aug 15 22:26:55 CEST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Ted> Is their any work being done to have the RIB table updated only
Ted> after negotiation is completed? Why have a route in the table
Ted> if the tunnel is not completed. Been experimenting with what I
The rational is that, once you have specified a policy for some flow,
you do not want to let packets out un-encrypted.
This does interact poorly when you are creating redundant tunnels of
various kinds. I'd have to know more about the problem that you are
trying to solve to say more.
- --
] "Elmo went to the wrong fundraiser" - The Simpson | firewalls [
] Michael Richardson, Xelerance Corporation, Ottawa, ON |net architect[
] mcr at xelerance.com http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys
iQCVAwUBQSANXYqHRg3pndX9AQHhRAP/YHNbvqjkXIE6adNSdMEN1uD1lgs6Znkc
1hLEaZpGPHMdmIKc2Lr4qMS1aPeLswaQ+34/VUeA1NHTO2lg5SAcVO81n8i1bGbH
U2Pr9wJsLG7AFyDNsWaKEfjFgaT2+sVMDOtQJGO55vAurqRs8k7NEiGkebjiwo2z
FstrFzM0VPE=
=XZNC
-----END PGP SIGNATURE-----
More information about the Users
mailing list