[Openswan Users] ipsec creates routes on startup
Alex Bennee
alex at bennee.com
Fri Apr 15 02:24:43 CEST 2005
Hi,
I've been trying to set up a VPN connection with ipsec and am hitting a
problem before I even start any connections. When I start the ipsec
service a bunch of additional routes are added to my routing table that
buggers up network connectivity which obviously makes starting a
connection up impossible. Any idea where ipsec could be getting this
idea from?
01:11 root at malory [ipsec] >/etc/init.d/ipsec start
* Starting IPSEC ......
ipsec_setup: Starting Openswan IPsec U2.2.0/K2.6.11-gentoo-r6vlan...
[ ok ]01:14 root at malory [ipsec] >route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0
eth0
127.0.0.0 127.0.0.1 255.0.0.0 UG 0 0 0
lo
0.0.0.0 192.168.1.250 128.0.0.0 UG 0 0 0
eth0
128.0.0.0 192.168.1.250 128.0.0.0 UG 0 0 0
eth0
0.0.0.0 192.168.1.250 0.0.0.0 UG 0 0 0
eth0
01:15 root at malory [ipsec] >/etc/init.d/ipsec stop
* Stopping IPSEC ......
ipsec_setup: Stopping Openswan IPsec...
01:20 root at malory [ipsec] >route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0
eth0
127.0.0.0 127.0.0.1 255.0.0.0 UG 0 0 0
lo
0.0.0.0 192.168.1.250 0.0.0.0 UG 0 0 0
eth0
The global part of my config looks like this:
# Specify the correct version
version 2
#
# The global configuration for IPsec
#
# The interface is automatically derived by looking at which
# interface has the default route. We also need to support NAT
#
config setup
interfaces=%defaultroute
uniqueids=yes
klipsdebug=none
plutodebug=all
nat_traversal=yes
Please CC me on any replies. Thanks,
--
Alex, homepage: http://www.bennee.com/~alex/
weapon, n.: An index of the lack of development of a culture.
More information about the Users
mailing list