[Openswan Users] uproute in _updown script
Marco Berizzi
pupilla at hotmail.com
Fri Feb 17 17:00:48 CET 2006
Opss I was forgotting: I'm running openswan 2.4.5rc4
Paul Wouters wrote:
>On Fri, 17 Feb 2006, Marco Berizzi wrote:
>
> > I would like to know if there is a quick & dirty solution to
> > remove the static route placed by openswan for every tunnel.
> > They aren't needed anymore on linux 2.6 with netkey. I have
> > taken a look at /usr/local/lib/_updown:
>
>They should not be set when using NETKEY.......
These routes are always present on my netkey boxes.
Is there anything wrong with my setup?
root at Halley:/etc/rc.d# netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt
Iface
x.y.z.1 0.0.0.0 255.255.255.255 UH 0 0 0 eth0
x.y.z.0 0.0.0.0 255.255.255.224 U 0 0 0 eth1
172.18.1.0 x.y.z.1 255.255.255.0 UG 0 0 0 eth0
172.25.5.0 x.y.z.1 255.255.255.0 UG 0 0 0 eth0
172.25.1.0 x.y.z.1 255.255.255.0 UG 0 0 0 eth0
172.21.1.0 x.y.z.1 255.255.255.0 UG 0 0 0 eth0
172.17.1.0 x.y.z.1 255.255.255.0 UG 0 0 0 eth0
172.23.0.0 0.0.0.0 255.255.254.0 U 0 0 0
eth2
172.16.0.0 x.y.z.1 255.255.254.0 UG 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 x.y.z.1 0.0.0.0 UG 0 0 0 eth0
root at Halley:/etc/rc.d#
> > route-host:*|route-client:*)
> > # connection to me or my client subnet being routed
> > uproute
> > ;;
> > unroute-host:*|unroute-client:*)
> > # connection to me or my client subnet being unrouted
> > downroute
> > ;;
> >
> > Is there any problem if I remove the uproute/downroute functions
> > from route/unroute-host/client?
>
>There shouldn't be.
Ok. I will try.
More information about the Users
mailing list