[Openswan Users] Changing MTU on a route seems to mess up leftsourceid in a conn definition
Andy Gay
andy at andynet.net
Sat Sep 16 01:27:24 EDT 2006
On Sat, 2006-09-16 at 00:00 -0500, Greg Scott wrote:
> Pinging a host across the tunnel works, right from the router. (The
> conn definition has a leftsourceid line.)
Actually it has a leftsourceip line, which is what you mean, I think.
If you specify leftsourceip it makes the pluto _updown script add "src
<address>" to each "ip route add" it does. So if you change the route,
you'll need to add that as well.
> [root at roseville-fw ipsec.d]# /sbin/ip route change 10.0.0.0/8 dev eth0
> mtu 1470
>
Should be "ip r change 10.0.0.0/8 dev eth0 mtu 1470 src 10.15.1.1"
More information about the Users
mailing list