[Openswan Users] Questions relating to OpenSWAN and Fedora Core
3
Paul Wouters
paul at xelerance.com
Fri Mar 4 10:04:31 CET 2005
On Thu, 3 Mar 2005, Jeff Simmons wrote:
> I've been through the documentation, but I'm getting somewhat lost, since I'm
> using Fedora Core 3 (which uses OpenSWAN with the native 2.6 kernel
> extensions) and some things seem to be broken. So I thought I'd try to ask a
> couple of questions to get myself started.
> I'd assumed that OpenSWAN did some rudimentary routing, given the existence of
> the 'next hop' specification in the connection configurations, but that
> doesn't seem to be the case. What is the purpose of the 'next hop'
nexthop is only used for KLIPS with ipsecX interfaces. It shouldn't do anything
on netkey.
> kernel, should I be looking at using IP (IPRoute2) to route all traffic out
> EXT2?
Yes.
> Where, and what, is the virtual interface ipsec0? It shows up in the log
Only when using KLIPS instead of NETKEY do you get ipsecX interfaces.
Paul
--
"At best it is a theory, at worst a fantasy" -- Michael Crichton
More information about the Users
mailing list