[Openswan Users] Ipsec0 entry in route table

Daren Hickman DarenHickman at ruggedcom.com
Tue Jan 2 10:43:17 EST 2007

. I am using openswan 2.4.5 and I have a problem, when I reboot the LINUX machine
 with openswan stopped and then start openswan my VPN comes up and everything is

When I reboot the machine with openswan running and I do and IP route show it
 it places a route to the network using the ipsec0 interface. dev eth1  proto kernel  scope link  src dev ipsec0  proto kernel  scope link  src dev eth2  proto kernel  scope link  src dev eth4  proto kernel  scope link  src dev eth3  proto kernel  scope link  src dev eth2  proto kernel  scope link  src dev ipsec0  scope link
 default via dev eth1  proto static

 When this route is in the route table everything going to a 10.x.x.x network
is routed to ipsec0 interface even if the source address doesn't match the security
association (bad).  Does anyone understand what is happening here?  When openswan is started on a machine that 
is already booted up there is no route for the ipsec0 interface when the tunnel comes up and only the 
traffic with both the correct source and destination addresses are tunneled.

Any help would be greatly appreciated.



No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.409 / Virus Database: 268.16.2/613 - Release Date: 1/1/2007
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20070102/ce191d92/attachment-0001.html 

More information about the Users mailing list