[Openswan Users] Openswan with Advanced Linux Routing

Paul Wouters paul at xelerance.com
Fri Nov 18 05:55:14 CET 2005


On Fri, 18 Nov 2005, Brendan Simon wrote:

> The commericial IPSec stack only interrogates the main table and does not look
> at other tables.  Effectively my ip rules are ignored as the IPSec stack is
> actually doing the routing based on the main linux routing table.  What I
> really want is for the IPSec stack to NOT do the routing, but pass the packets
> to the standard linux routing code.

Openswan with NETKEY should work. Openswan with KLIPS likely will give problems
since it also uses just the main routing table.

What is this "commercial stack". It sounds suspiciously like a KLIPS derivative.

Paul
-- 

"Happiness is never grand"

	--- Mustapha Mond, World Controller (Brave New World)


More information about the Users mailing list