[Openswan Users] Scenario question, and dummy interfaces

Ted Kaczmarek tedkaz at optonline.net
Wed Nov 17 21:36:52 CET 2004


I know that I can use %defaultoute, but say I am getting my default
route dynamically to the Openswan box via bgp, what happens to the ipsec
sessions when the kernel RIB entry for the default changes?

Going to test this tomorrow, but I am willing to bet some nice guy Paul
has the answer :-)

Also, I am still itching to be able to source a dummy interface. 
Now reading some other posts it appears netlink is required, so if I was
to modify the dummy code to provide netlink is this likely to fly.

I must say after migrating all our ipsec sessions to Openswan from a
Pix-515 life is joy. 

And you can put me down for two books the second is released.


More and more other projects are using wish lists and you guys are as
deserving as any of them. Also some OpenSwan shirts would be cool as
well. 

Has the animal been determined yet? 
If so, has the drawing been completed?

Ted




More information about the Users mailing list