[Openswan Users] Lots of %hold connections
Paul Wouters
paul at xelerance.com
Tue Sep 20 17:30:01 CEST 2005
On Tue, 20 Sep 2005, Michael Smith wrote:
> The narrow bare shunts are supposed to be replaced with broader subnet
> shunts from the IPsec policy, e.g. w.x.y.16/32:0 -0-> a.b.c.0/24. The
> trouble is that record_and_initiate_opportunistic() puts the transport
> protocol - 6 - in the bare shunt, but initiate_opportunistic() sets the
> transport protocol to 0 when it creates the broad %hold, so the broad
> %hold doesn't replace the narrow one. A workaround is to set
> transport_proto to 0 at the top of record_and_initiate_opportunistic():
Mail forwarded to dev at openswan.org and item put in the bug tracker.
Thanks for the extensive information!
Paul
More information about the Users
mailing list