[Openswan Users] uproute in _updown script

Marco Berizzi pupilla at hotmail.com
Fri Feb 17 17:00:48 CET 2006


Opss I was forgotting: I'm running openswan 2.4.5rc4

Paul Wouters wrote:

>On Fri, 17 Feb 2006, Marco Berizzi wrote:
>
> > I would like to know if there is a quick & dirty solution to
> > remove the static route placed by openswan for every tunnel.
> > They aren't needed anymore on linux 2.6 with netkey. I have
> > taken a look at /usr/local/lib/_updown:
>
>They should not be set when using NETKEY.......

These routes are always present on my netkey boxes.
Is there anything wrong with my setup?

root at Halley:/etc/rc.d# netstat -rn
Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window  irtt 
Iface
x.y.z.1     0.0.0.0         255.255.255.255 UH        0 0          0 eth0
x.y.z.0     0.0.0.0         255.255.255.224 U         0 0          0 eth1
172.18.1.0      x.y.z.1     255.255.255.0   UG        0 0          0 eth0
172.25.5.0      x.y.z.1     255.255.255.0   UG        0 0          0 eth0
172.25.1.0      x.y.z.1     255.255.255.0   UG        0 0          0 eth0
172.21.1.0      x.y.z.1     255.255.255.0   UG        0 0          0 eth0
172.17.1.0      x.y.z.1     255.255.255.0   UG        0 0          0 eth0
172.23.0.0      0.0.0.0         255.255.254.0   U         0 0          0 
eth2
172.16.0.0      x.y.z.1     255.255.254.0   UG        0 0          0 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U         0 0          0 lo
0.0.0.0         x.y.z.1     0.0.0.0         UG        0 0          0 eth0
root at Halley:/etc/rc.d#

> > route-host:*|route-client:*)
> >        # connection to me or my client subnet being routed
> >        uproute
> >        ;;
> > unroute-host:*|unroute-client:*)
> >        # connection to me or my client subnet being unrouted
> >        downroute
> >        ;;
> >
> > Is there any problem if I remove the uproute/downroute functions
> > from route/unroute-host/client?
>
>There shouldn't be.

Ok. I will try.




More information about the Users mailing list