[Openswan Users] when ipsec starts network traffic are droped

Paul Wouters paul at xelerance.com
Fri Jan 7 16:53:11 CET 2005


On Fri, 7 Jan 2005, Rhaurison Bergamin wrote:

> i'm using openswan-2.1.5-2, comes with FC3. its all configured ok
> When i start ipsec, all network traffic are droped.

> 128.0.0.0       200.217.50.59   128.0.0.0       UG    0      0        0 ppp0
> 0.0.0.0         200.217.50.59   0.0.0.0         UG    0      0        0 ppp0
>
>
> Why this mask 128.0.0.0 ?

It is the 'routing hack' to grab packets for a subnet or OE. Since you are
using the FC3 netkey based kernel, that route should not be there. You can
safely delete those two routes.
Does this behaviour still happen with openswan 2.3.0? (rpms are available
on ftp.openswan.org)

Paul
-- 

"At best it is a theory, at worst a fantasy" -- Michael Crichton



More information about the Users mailing list