[Openswan Users] routing problem

[Paul Wouters]

On Thu, 27 Dec 2007, Fatih wrote:

>
> this problem occured after upgrading from openswan version 2.4.6 to 2.4.8

> computer has 2 real internet ip address first is attached to ppp0 and
> second to ppp1
>
> default route is ppp0
>
> openswan works on both ip address. but real_ip_address2 which is
> attached to ppp1 only accepts ipsec-vpn request from static ip
> addresses. for implement that  i add the routing table appropriate
> entry. for instance i assume request come from 85.105.22.22. so i write
> to command line  "route add 85.105.22.22 gw ppp1_interface_gw_ipaddress"
> that works well.

It's a bit odd to do it like that. You might want to set the leftnexthop=
to the gw of ppp1.

> i have overcame the problem, with adding an entry to
> /usr/lib/ipsec/_updown at line 386. the entry is /usr/bin/routing.sh
> i have writen down all routing entries to that file. I know that this
> solutions is cursory.

You can use leftupdown=/your/script.sh

> what is the  appropriate way to accomplish this. or is this a bug
> revealed at version 2.4.8.

There were bugfixes past 2.4.8 for point to point links and routing. Try
the latest 2.4.x version.

Paul
-- 
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155