[Openswan Users] Routing problem
Ludovic
ludovic.mailinglist at gmail.com
Wed Feb 7 03:05:39 EST 2007
Ok, thanks for your reply. I'm french so i have difficulties to
explain my problem but i will try to do it more precisely by giving
you my configuration files.
Here is my ipcsec.conf when vpn service is running and no tunnel loaded:
version 2
config setup
interfaces=%defaultroute
klipsdebug=none
plutodebug=none
uniqueids=yes
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16,%v4:!192.168.6.0/255.255.255.0,%v4:!192.168.2.0/255.255.255.0,%v4:!192.168.5.0/255.255.255.0
conn %default
keyingtries=0
disablearrivalcheck=no
include /var/ipcop/vpn/no_oe.conf
and now when tunnel is "activated" like I said before:
version 2
config setup
interfaces=%defaultroute
klipsdebug=none
plutodebug=none
uniqueids=yes
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16,%v4:!192.168.6.0/255.255.255.0,%v4:!192.168.2.0/255.255.255.0,%v4:!192.168.5.0/255.255.255.0
conn %default
keyingtries=0
disablearrivalcheck=no
conn testrsa
left=192.168.9.193
leftnexthop=%defaultroute
leftsubnet=192.168.6.0/255.255.255.0
leftcert=/var/ipcop/certs/hostcert.pem
right=192.168.9.235
rightcert=/var/ipcop/certs/testrsacert.pem
dpddelay=30
dpdtimeout=120
dpdaction=clear
authby=rsasig
auto=add
include /var/ipcop/vpn/no_oe.conf
I've got a C program which run ipsec:
system("/usr/sbin/ipsec tncfg --clear >/dev/null");
system("/etc/rc.d/ipsec restart >/dev/null");
With openswan 1.0.7, i don't have this problem, i always can reach the
router interface but with openswan 2.4.7, i have the problem i have
described in the previous mail.
I hope that you have understand what i mean by "enabled" and "disabled".
Do you have any new idea now?
Thanks a lot for your help.
More information about the Users
mailing list