[Openswan Users] multiple disjoint private subnets

[Tuomo Soini]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Michael Richardson wrote:

|   No, we ripped it out again because it broke OE, and any dynamically
| keyed tunnels. The first packet gets dropped, and that caused a lot of
| grief.

No it did not. It changed behaviour _only_ if nexthop was not set or it
was set to %direct. That is: I added check that if nexthop=peer won't
use "via $nexthop" in routing command. That won't break other than OE in
local subnet. (Which is broken anyway for other reasons.)

|   My plan -- which I can't say right where it is now -- was to make
| nexthop optional in pluto, and so OE will set it, and if isn't set, then
| updown won't do it.

That's exactly what my patch did. But in updown script detecting
situation where nexthop is not set = nexthop is peer.

- --
Tuomo Soini <tis at foobar.fi>
Linux and network services
+358 40 5240030
Foobar Oy <http://foobar.fi/>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFA8FAcTlrZKzwul1ERAh6IAKCtSf+pWpFLIJIwyfDLAZ/QESzjjACfaEl3
793H2C5S8h7ZNQI5Qm2gEQE=
=q/VA
-----END PGP SIGNATURE-----